Source: Akamai TechnologiesGiven the report’s findings, organizations can expect to see attacks that on average vary in size between 400 Mbps and 5 Gbps. Enterprises are encouraged to take this range into consideration when preparing their DDoS defenses.Web Application Attacks: HTTP vs. HTTPSCompared to the second quarter of last year, Q3 2015 saw a 96.36% increase in HTTP web application attacks and a 79.02% decrease in HTTPS web application attacks. This drop in HTTPS-based events, which account for 12% of the total number of web app attacks over last year’s third quarter, represents a dramatic decrease after attackers had been using Shellshock prolifically earlier in the year.Even so, unlike HTTP, encrypted connections do not offer any additional protective measures for web applications. Akamai, therefore, believes that attackers will eventually shift to HTTPS in order to follow vulnerable applications.To a certain extent, we are already beginning to see this development, as the cloud services provider detected a trend of stealthier attacks over encrypted connections (particularly TLS as opposed to SSL) in Q3 2015.“With more Internet sites adopting TLS-enabled traffic as a standard security layer, attackers may follow suit. Or, it could be that attackers aren’t looking solely to penetrate a site but to target a back-end database, which is most likely accessed via HTTPS,” Akamai explains.Malicious actors based mostly in the United States (59% of the recorded attacks) primarily used local file inclusion and SQLi as attack vectors. Interestingly, these attacks mainly targeted the United States (75% of all attacks), with the retail industry having suffered the most at 55 percent. This is because companies in that sector have large databases full of valuable customer information and large numbers of customers who could lose trust in a retailer if their website is defaced. By comparison, the financial services industry was a distant second at 15%.
Source: Akamai TechnologiesPredictions for the FutureLooking ahead, Akamai anticipates that groups like DD4BC and Armada Collective will continue to launch attacks, that the gaming industry will continue to experience DDoS campaigns at the hands of PhantomSquad and others, and that the retail industry will continue to see the vast majority of web application attacks.For more information on the DDoS, web application, firewall, and cloud security threat activity in Q3 2015, please read Akamai’s report in full here.Title image courtesy of ShutterStock