Bigger, Faster, Stronger: 2 Reports Detail the Evolving State of DDoS

DDoS attacks continue to plague the Internet, getting bigger and more dangerous. And now, the kids are involved.

DDoS attacks dont arrive on little cat feet; they announce their presence with the subtlety of a shovel to the face. Two just-released reports show that these loud DDoS attacks are getting louder, larger, and more numerous with the passage of time.
Verisign released its
Q1 2018 DDoS Trends Report
and Akamai published its
State of the Internet/Security Summer 2018
report and neither was filled with good news if your job is defending a company or network against DDoS attacks. Together, the two reports paint a detailed and disturbing picture of the way DDoS attacks are evolving to be both more common and more dangerous.
Both reports noted the largest DDoS attack in the period, a 170 Gbps, 65 Mpps (million packets per second) operation notable for two things: its target and its originator.
The target was not a single organization or individual. It was, instead, an entire /24 subnet on the Internet. The size of the attack and the broad target meant that scores of websites and services around the world felt the effects.
Akamais report notes that the threat actor was also notable, given that it was a 12-year-old who originated the attack mechanism on YouTube and coordinated the attack through Steam (an online game-playing platform) and IRC.
When adolescents can use YouTube to launch a globe-spanning attack, it marks the dawn of a new definition of script kiddies.”
I believe [kids are] growing up faster because theyre exposed to it, says Lisa Beegle, senior manager of information security at Akamai, when asked about the age of this attack developer. They also have a greater amount of time they can commit to it. She continues, Was this kid as smart as an adult threat actor? No, but there was still a level of sophistication as to the target.
That target was hit with a reflection and massive amplification attach using
memcached
— an attack that saw a returned payload directed at the victim subnet that was 51,000 times the size of the spoofed request sent by the attacker.
While memcached has been in existence for 15 years, this attack seems to be the first major assault using the function in a malicious manner. Since it is a distributed memory object caching system, memcached becomes a very effective tool in the DDoS attackers arsenal.
While new attacks are available, the Verisign report notes that UDP floods remain the favorite DDoS mechanism, accounting for roughly half of all attacks seen in the quarter. TCP attacks were the next most common, involved in approximately one-quarter of the attacks. In many cases, though, both types (and others) could be involved, since 58% of attacks involved multiple attack types in a single event.
The nature of attacks continues to evolve through the industry. Last year, we were seeing smaller attacks that were coming in under the radar — they were causing an impact in 30 seconds, before we could see it and respond, Beegle says. Now, Ive seen attacks that were a week long, where [the attacker] changed the dynamics during the attack, she says. Moving forward, Beegle expects both types of attacks to continue. I think there will always be the mix, depending on who the target is and who the attacker is, she says. Weve seen some nation-state action and that will always be different than the script kiddies.
Related content:
Destructive Nation-State Cyberattacks Will Rise
DDoS Amped Up: DNS, Memcached Attacks Rise
Wicked Mirai Brings New Exploits to IoT Botnets
7 Variants (So Far) of Mirai

Last News
▸ ArcSight prepares for future at user conference post HP acquisition. ◂ Discovered: 07/01/2025 Category: security	▸ Samsung Epic 4G: First To Use Media Hub ◂ Discovered: 07/01/2025 Category: security	▸ Many third-party software fails security tests ◂ Discovered: 07/01/2025 Category: security

**Cyber Security Categories**
Google Dorks Database	Exploits Vulnerability	Exploit Shellcodes

CVE List

Tools/Apps

News/Aarticles

Phishing Database

Deepfake Detection

Trends/Statistics & Live Infos

Tags:
Bigger, Faster, Stronger: 2 Reports Detail the Evolving State of DDoS