\n<\/p>\n
SINGAPORE –\u00a0Media OutReach<\/a>\u00a0–\u00a019 October 2021 – Small
\u00a0<\/p>\n Attackers are continuing to diversify their
\u00a0<\/p>\n “The high level of intricacies behind
\u00a0<\/p>\n Traffic spoofing and UDP-style attacks were
\u00a0<\/p>\n Nexusguard’s TAP100
\u00a0<\/p>\n
\nbit-and-piece DDoS attacks (distributed denial of service) boomed by 233% in
\nthe first half of 2021, revealed Nexusguard<\/a> researchers in the
\nReport FHY 2021<\/a>. As the pandemic carried on into 2021, hackers experimented
\nwith new attack patterns to avoid signature-based detection. In the first half
\nof 2021, more than 99% of all DDoS attacks were smaller than 10Gbps, as
\nNexusguard had predicted in 2020. These small, nimble attacks can cripple
\ncommunications service providers (CSPs) and Internet service providers (ISPs)
\nif they leave detection to threshold or signature-based methods alone.<\/p>\n
\napproaches with bit-and-piece attacks to bring down target networks and
\ninfrastructures. More than 95% of attacks were smaller than 1Gbps each, of
\nwhich Nexusguard analysts believe a majority were launched using readily
\navailable and inexpensive DDoS-for-hire services. Rather than launching large
\nbandwidth attacks against their targets, researchers noted that perpetrators
\nchose to employ attacks using high packet-rate loads of small-sized traffic
\nfrom DDoS-for-hire services, with the aim of evading DDoS mitigation detection
\nsystems.<\/p>\n
\ncommunications service provider networks causes them to generally allow all
\ntypes of traffic to pass through, which leads to smaller or spoofed types of
\nattacks to strike undetected,” said Juniman Kasman, chief technology officer of
\nNexusguard. “Behavioral detection and mitigation approaches are strongly
\nrecommended for targeted networks since they can compare peacetime with battles
\nand take a wider range of factors into consideration than anomalous thresholds
\nor attack signatures.”<\/p>\n
\npopular in the first half of the year, with an 84% increase in UDP attacks
\ncompared to the previous six months. Nexusguard observed several types of UDP
\nattacks in use, one of which can cause “Black Storm” attacks theorized<\/u><\/a>
\nin recent research. Nexusguard researchers witnessed several service providers
\nbear the brunt of DDoS attacks, including
\nT\u00fcrk Telekom, Turkcell \u0130leti\u015fim Hizmetleri A.S. receiving the highest
\nconcentrations of malicious traffic. Nexusguard advises CSPs to use deep
\nlearning-based detection methods, which can help CSPs analyze huge amounts of
\ndata quickly and accurately while overcoming the inefficiencies inherent in
\nthreshold or signature-based methods.<\/p>\n
\nProgram<\/a> helps CSPs quickly launch anti-DDoS capabilities to protect
\ncustomers. The TAP100 Program removes the hardware barriers associated with
\ntypical anti-DDoS service ramp-up, allowing CSP product teams and C-suites to
\ncapture new revenue opportunities and ensure superior customer service.<\/p>\n