Content
A recent report from digital trust provider DigiCert has revealed a staggering increase in distributed denial-of-service (DDoS) attacks, describing the phenomenon as an 'internet tsunami.' This surge included two major attacks that peaked at 2.4 terabits per second (Tbps) and 3.7 Tbps respectively, marking some of the largest volumes of traffic ever recorded in such assaults. What's particularly alarming is the origin of these attacks, with significant activity coming from regions where digital infrastructure is rapidly expanding but regulatory frameworks are lagging behind. Countries like Vietnam, Russia, Colombia, and China are among the top five sources of these malicious campaigns.
September saw a worrying rise in DDoS attacks targeting universities and academic networks, surpassing the typical targets of financial services and IT/software sectors. This uptick coincided with peak enrollment periods and the more open infrastructure commonly found on campuses, making these institutions more vulnerable. Michael Smith, the Chief Technology Officer for Application Security at DigiCert, noted that attackers have evolved their tactics, blending precision and scale to devastating effect. Whereas targeted attacks dominated two out of the last three months, August witnessed a surge in large-scale 'carpet-bombing' style campaigns, which accounted for 65% of all incidents.
Automated systems now power most of these large-scale attacks, as highlighted by the increase in malicious web activity from 51% in July to 73% in September. In that same month alone, DigiCert recorded 32 million bot violations, underscoring how automation has become a critical tool for attackers. Meanwhile, DNS errors caused by misconfigurations skyrocketed by an astonishing 22,000% mid-quarter, illustrating how small technical faults can have widespread consequences across the internet.
Geographically, the United States emerged as the primary target, absorbing 58% of global DDoS activity. The United Kingdom and Saudi Arabia were also heavily targeted, each facing about 11% of the attack volume. According to Smith, adversaries are deliberately focusing their efforts on critical infrastructure and regions with geopolitical significance, seeking to maximize disruption and the ripple effects that come with it. This strategic targeting underscores the growing complexity of cyber threats and the need for organizations to maintain comprehensive visibility across infrastructure, applications, and user identities to build resilience against these attacks.
As these trends develop, the digital landscape finds itself at a crossroads where regulatory bodies, security experts, and institutions must adapt quickly. The evolving nature of DDoS attacks, blending precision strikes with overwhelming scale, calls for enhanced detection capabilities and proactive defense strategies. The full scale and implications of this 'internet tsunami' highlight that cyber defense is no longer just about reacting to attacks but anticipating and mitigating them through coordinated effort and robust infrastructure design.
