Internet security services company Akamai dealt with one of the largest and a more complex ransom DDoS (RDDoS) attack.
In February, Akamai dealt with three of the six biggest volumetric DDoS attacks the company has ever recorded.
Two of these were the largest known ransom DDoS attacks and the most recent of them peaked at 800Gbps; which had targeted a gambling company in Europe and was also the most complex Akamai saw since extortion DDoS started.
According to Akamai, since the start of the ransom DDoS campaign, show-of-force attacks have grown from 200+ Gbps in August to 500+ Gbps by mid-September, then raised to 800+ Gbps by February 2021.
The attackers used a new DDoS attack vector: a networking protocol known as the Datagram Congestion Control Protocol (DCCP) or protocol 33.
Leveraging DCCP for DDoS leads to a volumetric attack and can bypass the defenses set up for the TCP and UDP traffic flows that are more commonly seen during these incidents.
Anti-DDoS company Radware saw the new wave of extortions hit at the end of 2020 and in the first week of January. They said that organizations threatened with DDoS attacks in August and September of 2020 received new ransom letters asking for 10 bitcoins to stop the strike.
Radware says that the organizations that received the new letters had not been disclosed to the media last year and there are indications that the same actor was behind the new threats.
Just hours after sending the letters, the victims experienced more than nine hours of relentless DDoS attacks that exceeded 200Gbps and peaked at 237Gbps.
Akamai confirmed that their customers also went through similar episodes.
At two organizations, multiple campaigns extending over several days and targeting a range of IP addresses were found.
Akamai stated that the attackers were looking for weaknesses in defenses to exploit, and were also trying different attack vector combinations. Also, this year it was observed that there was an increase of DDoS attacks above 50Gbps
In less than three months, Akamai recorded more attacks of this magnitude than it did in the entire 2019, and their number is expected to rise significantly this year.
Image Credits : Computer Geek