- 넷스카우트, 최신 ‘위협 인텔리전스 보고서’ 발표… 지정학적 불안으로 디도스의 맹공 발생 > 뉴스 - 스타트업 커뮤니티 씬디스
- ‘DNS 물고문(DNS Water Torture)’ 증가가 2023년 하반기 700만 건 이상의 디도스 공격에 기여하며 핵티비스트 그룹의 글로벌…, 스타트업에 종사하시는 여러분들의 놀이터 씬디스는 스타트업 커뮤니티 입니다.
The increasing prevalence of ‘DNS Water Torture’ contributed to over 7 million DDoS attacks in the second half of 2023, reflecting a surge in global activities by hacktivist groups.
NETSCOUT SYSTEMS, INC. (NASDAQ: NTCT) today released its Q2 2023 DDoS Threat Intelligence Report, which analyzes trends and attack methodologies employed by hackers targeting service providers, enterprises, and end users. The information cited in the report is gathered globally from NETSCOUT’s unparalleled Internet visibility and provides data collection, analysis, prioritization, and dissemination for DDoS attacks across 214 countries and territories, 456 industry segments, and over 13,000 Autonomous System Numbers (ASNs). Driven by the rise of politically motivated and technically savvy hacktivist groups and DNS Water Torture attacks, NETSCOUT observed over 7 million DDoS attacks in the second half of 2023, a 15% increase from the first half of the year.
Hacktivism Increased 10-fold
DDoS (Distributed Denial-of-Service) hacktivism exemplified a shift in the global security landscape last year, crossing geographical boundaries. Groups such as NoName057(016) and Anonymous Sudan, as well as lone hackers and small collectives, are increasingly using DDoS to target those with whom they ideologically disagree, such as:
· Peru experienced a 30% surge in attacks related to protests surrounding the release of former Peruvian President Fujimori on December 6th.
· Poland saw a spike in attacks linked to a change of government in late 2023 and statements reaffirming Poland’s support for Ukraine in the Russia-Ukraine conflict.
· Anonymous Sudan targeted X (formerly Twitter) to influence Elon Musk regarding Starlink services within Sudan and attacked Telegram to take down a major Telegram channel.
NoName057(016), Anonymous Sudan, and Killnet have been implicated in DDoS attacks targeting communications infrastructure, hospitals, and banks in Ukraine, Russia, Israel, and Palestine. Daily hacktivist attacks more than 10x between the first and second halves of 2023. NoName057(016) topped the DDoS attacker list in 2023, targeting 780 websites across 35 countries.
Water Torture Attacks Increase
DNS (Domain Name System) Water Torture attacks, which target critical systems at the core of the Internet control plane, have been on the rise since late 2019. Designed to overwhelm authoritative DNS servers, DNS query floods experienced a staggering 553% increase from the first half of 2020 to the second half of 2023. Instead of targeting a single website or server, attackers go after the entire system, causing far more damage.
Gaming and Gambling Targeted
NETSCOUT’s research identifies gaming and associated gambling as primary targets for DDoS attacks. Threat actors are drawn to the sector’s substantial financial value and aim to disrupt competitors, especially during online esports tournaments. Historically, 80-90% of all DDoS attacks have been related to gaming and gambling. NETSCOUT assessed attacks against businesses in this sector and estimates that over 100,000 DDoS attacks were launched against the gaming industry in 2023 and over 25,000 against gambling-related businesses.
Furthermore, based on NETSCOUT’s observation of the DDoS threat landscape, approximately 1% of DDoS attacks are mitigated at the origin network.
“Over the past year, global attackers have become more sophisticated, targeting websites, overwhelming servers to shut down customers, creating digital chaos, and influencing geopolitical issues,” said Richard Hummel, Senior Threat Intelligence Lead at NETSCOUT. “The relentless barrage of DDoS threats drives up costs and creates security fatigue for network operators. Without proper advanced DDoS defenses leveraging predictive, real-time threat intelligence, network operators cannot protect their digital assets.”
Through decades of experience working with the world’s largest service providers and enterprises, NETSCOUT gains extensive visibility into the global internet to identify the pulse of the digital world. The ability to monitor and respond to DDoS attacks is powered by NETSCOUT’s ATLAS platform, which can analyze an impressive 500 terabits per second (Tbps) of network traffic.
For more information on NETSCOUT’s DDoS Threat Intelligence Report, visit NETSCOUT’s interactive website. To view real-time DDoS attack statistics, maps, and insights, visit NETSCOUT Cyber Threat Horizon.
About NETSCOUT
NETSCOUT SYSTEMS, INC. (NASDAQ: NTCT) protects the connected world from cyberattacks and performance and availability disruptions through its unique visibility platform and solutions built on its pioneering large-scale deep packet inspection technology. NETSCOUT serves the world’s largest enterprises, service providers, and public sector organizations. Learn more at www.netscout.com or follow @NETSCOUT on LinkedIn, X, or Facebook.
©2024 NETSCOUT SYSTEMS, INC. All rights reserved. NETSCOUT, the NETSCOUT logo, Guardians of the Connected World, Visibility Without Borders, Adaptive Service Intelligence, Arbor, ATLAS, Cyber Threat Horizon, InfiniStream, nGenius, nGeniusONE, Omnis, and TrueCall are registered trademarks or trademarks of NETSCOUT SYSTEMS, INC. and/or its subsidiaries and/or affiliates in the U.S. and/or other countries. Third-party trademarks mentioned are the property of their respective owners.
Contact
NETSCOUT SYSTEMS, INC.
Editorial
Chris Lucas
+1 978-614-4124
chris.lucas@netscout.com
Public Relations
Finn Partners
Chris Shattuck
+1 404 502 6755
NETSCOUT-US@FinnPartners.com
Comments0