Europe Sees ‘Extraordinary’ Spike In DDoS Attack Power

Figures shown exclusively to TechWeekEurope have revealed startling growth in distributed denial of service (DDoS) attack power in Europe, an area that had not traditionally seen the same levels of activity as others.

There have already been more attacks in 2013 over 20Gbps targeting destinations in Europe, the Middle East and Africa (EMEA) than in the whole of 2012, according to research from Arbor Networks.

DDoS boom

Attacks over 10Gbps in EMEA were up 23 percent from between 2011 and 2012, but already in 2013 it’s up 82 percent. So far this year, the average size of attacks has increased 84 percent, from 1.06Gbps in all of 2012 to 1.95Gbps in Q1 of 2013.

The data was taken from Arbor’s ATLAS initiatives, which takes data from over 250 global ISPs and from the company’s customer base.

According to Arbor’s Darren Anstee, Europe had not seen the same levels of DDoS traffic as other areas, especially the US and Asia, but now it was rapidly catching up.

Earlier this year, what was believed to be the biggest DDoS attack in history, at 309Gbps, was recorded at a Tier 1 networking organisation in the UK, in an attempt to knock anti-spam outfit Spamhaus offline. Prolexic later questioned the figures, but the Tier 1 networking provider involved said the reports were genuine.

Another anti-DDoS vendor Prolexic yesterday reported the biggest DNS reflection attack, where attackers spoof their IP, pretend to be the target, send lines of code to a DNS server, which then sends back large amounts of traffic to the victim.

The firm said it saw an attack at 167Gbps aimed at a financial exchange platform. The company reported in April DDoS power had jumped 718 percent quarter-over-quarter.

Anstee told TechWeek attackers had been collaborating to get attack sizes up. As DNS amplification attacks rely on open DNS resolvers, DDoSers have started sharing lists of these open servers so they know where to aim their code.

It is believed a major DDoS campaign on US banks, called Operation Ababil, is now turning its crosshairs on European financial institutions, whilst attack sizes are only expected to go up and surpass the Spamhaus hit.

John Stratton, president of Verizon Enterprise Solutions, which works at the Tier 1 networking level and offers security services, said financial services remain the number one target of DDoS attacks.

“It is extraordinary how the size of attacks has grown,” Stratton said. “It has grown by 40 or 50 times over the last nine months.”

What do you know about Internet security? Find out with our quiz!

Thomas Brewster

Tom Brewster is TechWeek Europe's Security Correspondent. He has also been named BT Information Security Journalist of the Year in 2012 and 2013.

View Comments

  • Maybe this might be a good thing and create a better push for better international co-operation and more money into cyber crime detection and prosecution.

Recent Posts

Craig Wright Sentenced For Contempt Of Court

Suspended prison sentence for Craig Wright for “flagrant breach” of court order, after his false…

3 days ago

El Salvador To Sell Or Discontinue Bitcoin Wallet, After IMF Deal

Cash-strapped south American country agrees to sell or discontinue its national Bitcoin wallet after signing…

3 days ago

UK’s ICO Labels Google ‘Irresponsible’ For Tracking Change

Google's change will allow advertisers to track customers' digital “fingerprints”, but UK data protection watchdog…

3 days ago

EU Publishes iOS Interoperability Plans

European Commission publishes preliminary instructions to Apple on how to open up iOS to rivals,…

3 days ago

Momeni Convicted In Bob Lee Murder

San Francisco jury finds Nima Momeni guilty of second-degree murder of Cash App founder Bob…

4 days ago