Business Wire

Neustar highlights rise in ransom-related DDoS attacks and greater use of existing attack vectors

Share

Neustar, Inc., a global information services and technology company and leader in identity resolution, has today published its report entitled ‘Cyber Threats and Trends: Pandemic Style’, detailing the security risks faced by companies as the COVID-19 pandemic accelerated the digital revolution.

This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20210128005015/en/

Figure 1: Percentage change in number of attacks by size category, 2020 vs. 2019 (Graphic: Business Wire)

Figure 1: Percentage change in number of attacks by size category, 2020 vs. 2019 (Graphic: Business Wire)

Informed by data from Neustar’s Security Operations Center (SOC), the report reveals a 154 percent increase in the number of attacks between 2019 and 2020, with growth in ransom-related DDoS (RDDoS) attacks and a rise in use of existing attack vectors, including web applications. The report also provides key details around the amount, size, duration and intensity of DDoS attacks throughout 2020 to keep cyber security professionals informed.

DDoS ransom attacks on the rise

Primarily, the report highlights a rise in ransom-related DDoS attacks, by which extortion demands are issued against organisations. These attacks grew in persistence and sophistication, as well as by target, compared to previous years.

While RDDoS is not a new phenomenon for many online industries, attackers have recently set their sights on organisations across a wider variety of sectors including financial services, government and telecommunications.

One reason for the adoption of DDoS as a ransom vector, as opposed to using malware, is the ease with which such attacks can be carried out. Infecting an organisation’s networks with malware or ransomware takes time and careful planning. Launching a DDoS attack, in comparison, has become relatively simple and has the added benefit of being harder to trace back to its origin.

2020 saw bad actors posing as prolific threat groups such as Fancy Bear in ransom notes – capitalising on fear of high-profile nation-state attacks – and threatening DDoS attacks unless the ransom was paid within a specific time frame.

“Organisations should avoid paying these ransoms,” said Michael Kaczmarek, Vice President of Security Product Management at Neustar. “Instead, any attack should be reported to the nearest law enforcement field office, as the information may help identify the attackers and ultimately hold them accountable. Beyond this, organisations can prepare by setting up a robust DDoS mitigation strategy, including assessing the risks, evaluating available solutions, considering mitigation strategies and keeping their plan and provider up to date.”

Existing attack vectors

While 2020 did not see any dramatically new attack vectors emerge, there was certainly a greater use of existing ones like web applications, which were the top targeted hacking vector in 2020.

Numerous built-in access protocols, which have been increasingly exploited as attack vectors, came up again in 2020. In fact, the FBI issued an alert in July warning that common network protocols like ARMS (Apple Remote Management Services), WS-DD (Web Services Dynamic Discovery) and CoAP (Constrained Application Protocol) were being abused by hackers to conduct DDoS reflection and amplification attacks – while cautioning that disabling them could cause a loss in business productivity and connectivity.

In response to this heightened threat level, the results of the latest Neustar International Security Council (NISC) survey indicated that more cyber security professionals are outsourcing DDoS mitigation, having increased by a full percentage point in the last quarter alone.

DNS attacks

In 2020, Neustar also saw an increase in attacks on the Domain Name System itself — or what look like attacks, as bad actors abuse the system.

“Acting as the Internet’s address book and backbone of today’s digital services, it’s unsurprising that DNS is an increasingly appealing target for malicious actors, particularly as more consumers turn to websites during peak online shopping periods,” said Rodney Joffe, Senior Vice President and Fellow, Neustar.

Recent NISC survey data supports this trend, with three in five respondents in a December 2020 study reporting they had fallen victim to a DNS attack in the last year. Even more concerning, over 70 percent of organisations admitted to having reservations about their awareness of, and ability to respond to, DNS attacks.

The total number of DDoS attacks Neustar mitigated on behalf of its customers in 2020 increased by more than two and a half times over 2019. The largest attack size observed during this time was also the largest that Neustar has ever mitigated and, at 1.17 Terabits per second (Tbps), among the largest ever seen on the Internet. The longest duration for a single attack was also the longest Neustar has mitigated, at 5 days and 18 hours.

A copy of the Neustar report is available here.

-ENDS-

About Neustar

Neustar is an information services and technology company and a leader in identity resolution providing the data and technology that enables trusted connections between companies and people at the moments that matter most. Neustar offers industry-leading solutions in Marketing, Risk, Communications and Security that responsibly connect data on people, devices and locations, continuously corroborated through billions of transactions. Neustar serves more than 8,000 clients worldwide, including 60 of the Fortune 100. Learn how your company can benefit from the power of trusted connections here: https://www.home.neustar.

# # #

Contact information

Jenny Morris
Hotwire for Neustar
+44 (0)7393465529
neustaruk@hotwireglobal.com

About Business Wire

Business Wire
Business Wire
24 Martin Lane
EC4R 0DR London

+44 20 7626 1982http://www.businesswire.co.uk

(c) 2018 Business Wire, Inc., All rights reserved.

Business Wire, a Berkshire Hathaway company, is the global leader in multiplatform press release distribution.

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

CGTN: What Are Generations of Chinese Communists Striving For?27.2.2021 16:36:00 CETPress release

The Communist Party of China (CPC), the ruling party of the world's most populous nation and the second largest economy, is turning 100 this year. What has been motivating the CPC to fight against one challenge after another over the past century? This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20210227005021/en/ "The original aspiration and the mission of Chinese Communists is to seek happiness for the Chinese people and rejuvenation for the Chinese nation," General Secretary Xi Jinping of the CPC Central Committee said in his report to the 19th CPC National Congress in October 2017. "This founding aspiration, this mission, is what inspires the Chinese Communists to advance," Xi said. Self-discipline, selflessness In March 2018, Xi, also the Chinese president, further explained the cause pursued by the CPC with a quote from an ancient poem: "A virtuous person is as sharp-sighted as a clear mirror hanging high, a selfless perso

Colicity Inc. Announces Closing of $345 Million Initial Public Offering26.2.2021 23:00:00 CETPress release

Colicity Inc. (the “Company”) announced the closing today of its initial public offering of 34,500,000 units, including the underwriters’ exercise of their full over-allotment option for 4,500,000 units, at a price of $10.00 per unit. The units are listed on the NASDAQ Stock Market (NASDAQ) and began trading under the ticker symbol “COLIU” on February 24, 2021. Each unit consists of one Class A share and one-fifth of one redeemable warrant, with each whole warrant exercisable to purchase one Class A share at a price of $11.50 per share. Only whole warrants will be exercisable. Once the securities comprising the units begin separate trading, the Class A shares and warrants are expected to be listed on the NASDAQ under the symbols “COLI” and “COLIW,” respectively. Colicity Inc. is a blank check company formed for the purpose of effecting a merger, share exchange, asset acquisition, share purchase, reorganization or similar business combination with one or more businesses. The Company int

C3 AI and Baker Hughes to Provide Enterprise AI Solutions to Accelerate PETRONAS Digital Transformation Program26.2.2021 15:00:00 CETPress release

C3 AI (NYSE: AI) and Baker Hughes today announced an artificial intelligence (AI) collaboration with PETRONAS, a global energy and solutions company from Malaysia, to apply BakerHughesC3.ai (BHC3) technology across PETRONAS’s strategic digital transformation programs. As the custodian of Malaysia's national oil and gas resources, PETRONAS runs an extensive digital transformation program across energy operations to extract value from data. The adoption of AI as part of its overall program for improved oil and gas productivity, asset integrity, and safety supports PETRONAS’s commitment to provide clean, efficient energy solutions by harnessing the power of technology. PETRONAS will work with energy technology, data science, and AI experts at Baker Hughes and C3 AI to collaborate on projects focused on improved reliability of energy assets in critical operations. Utilizing Microsoft Azure, PETRONAS will deploy the BHC3™ Reliability application to further improve maintenance programs for g

Avania in Position for Next Stage of Growth26.2.2021 14:00:00 CETPress release

Avania, a leading global full-service contract research organization (CRO) focused on medical technology (MedTech) development, today announced that it has successfully refinanced its existing banking facilities with Crescent Capital Group. “This new banking facility allows us to accelerate our next phase of organic and acquisitive growth over the next few years,” said Edo van Houten, CFO of Avania. “This transaction is also a reflection of the progress we have made in our brand strategy and position in the market, and it demonstrates the confidence of the financial community in our operational and strategic plan.” Avania has navigated confidently through the COVID-19 pandemic, posting a strong year of growth in 2020 despite the pandemic. The company will continue its growth trajectory as a global MedTech-focused CRO, supporting products from concept through post-market support. MedTech is all Avania does, navigating innovative medical technologies to market effectively and efficiently

Ipsen Receives Positive CHMP Opinion Recommending Cabometyx ® in Combination With Opdivo ® as First-line Treatment for Patients Living With Advanced Renal Cell Carcinoma26.2.2021 12:37:00 CETPress release

Regulatory News: Ipsen (Euronext: IPN; ADR: IPSEY) today announced that the Committee for Medicinal Products for Human Use (CHMP) of the European Medicines Agency (EMA) has recommended approval for Cabometyx® (cabozantinib) in combination with Bristol Myers Squibb’s Opdivo® (nivolumab) for the first-line treatment of advanced renal cell carcinoma (aRCC). The European Commission, which has the authority to approve medicines for the European Union (E.U.), will now review the CHMP recommendation and a final decision on the application in the E.U. is expected in the coming months. “Advanced renal cell carcinoma is a disease that significantly impacts the lives of people around the world. We’re proud to be able to share that the CHMP has confirmed a positive recommendation for Cabometyx® in combination with Opdivo®, bringing this impactful new treatment option one step closer for patients,” said Howard Mayer, Executive Vice President and Head of Research and Development, Ipsen. “At Ipsen, w

Hiro Capital Leads $15 Million of Games VC Investment Into Snowprint Studios, Double Loop Games and Happy Volcano Games26.2.2021 09:55:00 CETPress release

Three international video game studios are the latest investments for Hiro Capital, the entrepreneur-led Venture Capital fund focused on backing innovators in Video Games, the Metaverse, Esports and Digital Fitness. The three mobile and cross-platform studios – Snowprint in Stockholm/Berlin, Double Loop Games in San Francisco and Happy Volcano in Belgium – will use Hiro’s investment to expand their development pipelines and accelerate global growth. They join UK and US Games studios Flavourworks, Polyarc and Lightfox in the Hiro Capital portfolio, alongside pioneers in the gamification of Games Streaming and Digital Fitness LIV.tv, Edgegap,FitXR and Nurvv. Ian Livingstone, co-founding partner at Hiro Capital, said, "We are excited to begin 2021 by announcing Hiro's investment in three amazing games studios, Snowprint, Double Loop and Happy Volcano. Each studio has demonstrated innovation and expertise in developing fun to play games which resonate with today’s audiences. I’m especially

Inspur Information Releases 2020 Global Computing Index Report26.2.2021 09:07:00 CETPress release

Inspur Information, a leading IT infrastructure solutions provider, has sponsored an International Data Corporation (IDC) white paper on the 2020 Global Computing Index (henceforth referred to as The Report). As the world’s first index report on computing, The Report unveils the relationship between computing power and economic development and serves as a reference for the outlook of the global digital economy. Global digital transformation has entered a phase marked by exponential growth in innovation, with the size of the digital economy projected to continue on an upward trend. As a key factor that underlies digital technology development, computing is now defining the productivity of the digital economy era. According to The Report, economic growth directly correlates with the development of computing—one point of growth in the computing index translates to a 3.3‰ rise in the size of the digital economy and a 1.8‰ growth in GDP. Specifically, AI computing market share is projected