DDoS attacks making hackers a 95% profit margin

But with repeated attacks on some businesses, the cost to them is much higher

Hacking on keyboard

Research by Kaspersky has revealed that arranging a DDoS attack can cost a hacker just $7 an hour, with a profit margin of around 95% - plus they sometimes get loyalty points.

The research firm investigated how hackers carry out a distributed-denial-of-service attack, revealing that it's as easy as 'customers' paying a 'service provider' a registration fee to kick one off. When they have completed the registration process, they receive a report about the attacks and sometimes even loyalty points for each attack they take part in.

Hackers charge their 'customers' varying amounts for DDoS as a service, dependent on factors such as the type of attack (an IoT-based botnet is cheaper than a server botnet), length of the attack, and the location of the target. The type of the victim will also have a bearing on how much it costs.

Hackers make a profit of around $18 an hour for each attack they launch, although that's radically increased if the criminal opts to use a ransomware attack rather than DDoS.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

"We expect the profitability of DDoS attacks to continue to grow," Russ Madley, head of B2B at Kaspersky Lab said. "As a result, [we] will see them increasingly used to extort, disrupt and mask other more intrusive attacks on businesses."

"Worryingly, small and medium sized businesses are not confident in their knowledge of how to combat these threats effectively," Madley added. "The longest DDoS attack in 2016 lasted 292 hours according to Kaspersky Lab's research, or about 12 days. Most online businesses can ill-afford to have their doors closed' for even an hour, let alone for 292 hours, as criminals take advantage of their poor defences."

There's no doubt that DDoS attacks and other cybercrimes are making hackers lots of money, especially when companies come under fire repeatedly.

"Companies that host these online sites are also under attack on a daily basis," Madley said. "The channel has a significant opportunity with our help to identify risks, provide strategic advice and deliver the right solutions to customers to prevent damaging DDoS attacks."

Featured Resources

Digitally perfecting the supply chain

How new technologies are being leveraged to transform the manufacturing supply chain

Download now

Three keys to maximise application migration and modernisation success

Harness the benefits that modernised applications can offer

Download now

Your enterprise cloud solutions guide

Infrastructure designed to meet your company's IT needs for next-generation cloud applications

Download now

The 3 approaches of Breach and Attack Simulation technologies

A guide to the nuances of BAS, helping you stay one step ahead of cyber criminals

Download now
Advertisement

Recommended

Visit/security/internet-security/354417/avast-and-avg-extensions-pulled-from-chrome
internet security

Avast and AVG extensions pulled from Chrome

19 Dec 2019
Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

Visit/operating-systems/25802/17-windows-10-problems-and-how-to-fix-them
operating systems

17 Windows 10 problems - and how to fix them

13 Jan 2020
Visit/microsoft-windows/32066/what-to-do-if-youre-still-running-windows-7
Microsoft Windows

What to do if you're still running Windows 7

14 Jan 2020
Visit/web-browser/30394/what-is-http-error-503-and-how-do-you-fix-it
web browser

What is HTTP error 503 and how do you fix it?

7 Jan 2020
Visit/policy-legislation/general-data-protection-regulation-gdpr/354577/data-protection-fines-hit-ps100m
General Data Protection Regulation (GDPR)

Data protection fines hit £100m during first 18 months of GDPR

20 Jan 2020