Enterprise Is the Main Target of DDoS Attacks
During the third quarter (Q3) of 2013, attacks originated from the 185 countries or regions, up 10 from the previous quarter. China (35%), Indonesia (20%), United States (11%)
Port 445 (Microsoft-DS) continues to be the most targeted port, drawing 23% of DDoS attacks. Attacks targeting Ports 80 (WWW/HTTP) and 443 (SSL/HTTPS) declined, dropping to 14% and 13%, respectively, compared to the second quarter (Q2) of 2013.
All types of attacks increased from 2012 to Q3, 2013, from 768 to 807, respectively, but since Akamai started reporting DDoS attacks in Q4, 2012, such attacks decreased from Q2 to Q3, 2013, from 318 to 281.
“We believe that 2013 will ultimately be a significantly more active year for DDoS attacks than 2012 as of the end of the third quarter, customers had already reported more DDoS attacks than they did in all of 2012,” says David Belson, the report’s editor.
The enterprise continues to be the leading target of DDoS attacks, with 127 reported in Q3, 2013. Commerce followed with 80 attacks, and media and entertainment reported 42.
Of the 281 Q3 attacks, 27 customers were attacked for a second time, five reported three attacks, and seven were attacked more than three times. Data analysis indicates that if a company suffers one DDoS attack, there is a 25% chance of another assault within three months.
One reason for Q3’s shrinking attacks is the “relative silence” of the biggest attacker last year and earlier this year, the Izz ad-Dim al-Qassam Cyber Fighters, according to the report.
North America (165), Asia-Pacific (71), Europe and the Middle East (45)
Akamai projects more than 1,000 attacks of all types to be reported by customers by the end of 2013.