DDoS attacks: Now shorter but more powerful
DDoS attacks: Now shorter but more powerful

Distributed-denial-of-service (DDoS) attacks are getting shorter, but more powerful than previously, claims a report just released by the threat response and research team with NSFocus.

The DDoS research and remediation firm says that results of the report are based on data from actual incidents of attacks that occurred during the first half of 2014.

Thanks to their short duration, the company says it has observed attacks taking place several times within a short space of time - but with much higher volumes than seen previously.  

Delving into the report reveals that attacks continue to be short in duration, but with repeated frequency - more than 90 percent of attacks detected lasted less than 30 minutes.

This ongoing trend, says the report, indicates that latency-sensitive Web sites, such as online gaming, e-commerce and hosting services should be prepared to implement security systems that support rapid response.

DDoS traffic volume, meanwhile, was up overall with a third peaking at over 500 Mbps and more than five percent reaching up to 4 Gbps.

On top of this, the findings show that over 50 percent of DDoS attacks were above 0.2 Mpps in the first half of 2014 - increasing from around 16 percent seen during the same period last year.

In addition, says NSFocus, more than 2.0 percent of DDoS attacks were launched at a rate of over 3.2 Mpps, whilst attacks targeting ISPs increased by 87.2 percent, enterprises by 100.5 percent and online gaming by 60 percent.

The highest frequency of attacks experienced by a single victim, says the report, was 68 separate DDoS attacks.

Terence Chong, NSFocus' solutions architect, said that the company has been maintaining a continuous review of DDoS attacks over recent years, and has observed that the trends constantly change as attacks morph and hacker behaviour evolves.

"To stay ahead of these trends, we strongly encourage our customers to take a defensive approach in identifying and mitigating these threats before they happen," he explained.

According to the report, the ongoing trends in the duration and the size of the attack traffic can most likely be attributed to a variety of elements including technological developments, network environment evolution and changes in the pattern of DDoS for profit.