Business
Radware H1 2023 Report: Malicious Web Application Transactions Skyrocket 500%
DoS attack patterns shift to layer 7, essential infrastructure and cloud-based operationsDNS Flood attacks surgeGovernment, business/economy, and travel
About this update from Radware Ltd.
[{"type":"text","content":"DoS attack patterns shift to layer 7, essential infrastructure and cloud-based operationsDNS Flood attacks surgeGovernment, business/economy, and travel websites face the most hacktivist claimed DDoS attacks worldwide MAHWAH, N.J., Aug. 24, 2023 (GLOBE NEWSWIRE) -- Radware® (NASDAQ: RDWR), a leading provider of cyber security and application delivery solutions, released its First Half 2023 Global Threat Analysis Report. The comprehensive report leverages intelligence provided by network and application attack activity sourced from Radware’s Cloud and Managed Services, Global Deception Network, and threat intelligence research team. In addition, it draws from information found on Telegram, a public messaging platform often used by cybercriminals. Radware’s director of threat intelligence Pascal Geenens commented, “The narrative for the threat landscape in 2023 is clear: a significant shift is taking place in Denial-of-Service attack patterns. The message to organizations is equally as clear: the focus now lies on proactively adapting to these evolving cyber threats. “Increasing numbers of bad actors are moving up the network stack from layers 3 and 4 to layer 7 with their sights set on compromising online applications and APIs as well as essential infrastructure. To launch attacks with even greater impact, control, and scale, also look for them to continue a steady transition from compromised IoT devices to cloud-based operations.” SHIFTING DDOS ATTACK PATTERNS The global threat landscape continues to evolve at a rapid pace. In 2023, the profile of Denial-of-Service attacks is being redefined in terms of tactics, vector, size, complexity, and hacktivist offensives. According to Radware’s attack activity during the first half of 2023: Changing tactics: The number of malicious web application transactions skyrocketed by 500% compared to the first half of 2022, while the total number of DDoS events decreased 33%. This points to a change in DDoS attack patterns as attacks shift from the network layer to the application layer.Surging vectors: There has been a considerable surge in DNS query floods. In the second quarter of 2023, the proportion of attacks featuring a DNS Flood vector climbed almost twofold compared to the ratio of attacks in 2021 and most of 2022.Bigger attacks: The relative number of large attacks (greater than 100Gbp...