Dark DDoS activity to increase in the UK in 2016

The use of ‘Dark DDoS' attacks used as smokescreen to distract victims from hidden activity will grow in the UK in 2016.

Predictions from Corero Network Security's most recent Trends and Analysis report also show that ransom demands will triple to 30 percent in the New Year due to the anticipated increase of DDoS attacks. Attackers are switching between various DDoS attack methods until successful to confuse IT teams, cause network disturbances and steal sensitive data.

David Larson, COO at Corero said, “The Carphone Warehouse attack in August was interesting because it was one of the first publicly reported cases of ‘Dark DDoS' in the public domain. This is a new frontier for DDoS attacks and a growing threat for any internet-connected business that is housing sensitive data, such as credit card details or other personally identifiable information."

“Traditional approaches to DDoS defence simply cannot catch these sophisticated attacks – only by using an always-on, inline DDoS mitigation solution that automatically removes the threat and provides real-time visibility will IT teams be able to harden their security perimeter to deal with this emerging security threat.”

Shorter attack durations are also being deployed with the majority of DDoS attacks experienced by Corero customers in 2015 being less than 1Gbps. More than 95 percent of these attacks lasted a maximum of 30 minutes.

Corero also anticipates that the role of ISPs to provide DDoS mitigation services to their customers will become a major trend. The company found that 75 percent of enterprise customers want their ISP to provide more security services to remove DDoS traffic from coming into their networks. 

Larson stated, “The current status quo allows malicious traffic carrying DDoS threats to flow freely over most provider networks. As a result, most customers end up paying their provider for bandwidth that delivers potentially dangerous Internet content. But the technology exists for ISPs to turn this problem into a business opportunity. By providing DDoS mitigation tools as a service, deployed at the Internet edge, they can defeat this problem before it enters their customers' networks."