Kaspersky reveals DDoS attacks last longer in 2016
The longest attack in the period lasted 12 days, beating the previous record by four days
Kaspersky has revealed DDoS attacks last longer than they used to, suggesting they are becoming more sophisticated and harder for companies to fix.
The company's report on botnet-assisted DDoS attacks for the second quarter of 2016 explained the number of attacks lasting up to four hours fell by eight percent to 60 per cent of attacks, while those lasting 20-49 hours were up five per cent and 50-99 hours up three per cent.
The longest attack recorded was 12 days, which was four days longer than last year's record, Kaspersky revealed.
The company's report also revealed the number of attacks using the SYN DDoS method increased 1.4 times, accounting for 76 per cent of the total DDoS attacks. The reason for this was because Linux bot attacks almost doubled, making up 70 per cent of the total.
"Linux servers often contain common vulnerabilities but no protection from a reliable security solution, making them prone to bot infections," Oleg Kupreev, lead malware analyst at Kaspersky Lab, said.
"These factors make them a convenient tool for botnet owners. Attacks carried out by Linux-based bots are simple but effective; they can last for weeks, while the owner of the server has no idea it is the source of an attack."
He went on to explain that even using a single server, cybercriminals are able to launch an attack equal in strength to hundreds of individual computers.
"That's why companies need to be prepared in advance for such a scenario, ensuring reliable protection against DDoS attacks of any complexity and duration," he said.
What you need to know about migrating to SAP S/4HANA
Factors to assess how and when to begin migrationDownload now
Your enterprise cloud solutions guide
Infrastructure designed to meet your company's IT needs for next-generation cloud applicationsDownload now
Testing for compliance just became easier
How you can use technology to ensure compliance in your organisationDownload now
Best practices for implementing security awareness training
How to develop a security awareness programme that will actually change behaviourDownload now