Business Wire

MA-NETSCOUT-SYSTEMS

22.3.2022 11:02:06 CET | Business Wire | Press release

Share
Bad Actors Innovate, Extort and Launch 9.7M DDoS Attacks in 2021 According to the Latest NETSCOUT Threat Intelligence Report

NETSCOUT SYSTEMS, INC., (NASDAQ: NTCT) today announced findings from its bi-annual Threat Intelligence Report . During the second half of 2021, cybercriminals launched approximately 4.4 million Distributed Denial of Service (DDoS) attacks, bringing the total number of DDoS attacks in 2021 to 9.75 million. These attacks represent a 3% decrease from the record number set during the height of the pandemic but continue at a pace that's 14% above pre-pandemic levels.

The report details how the second half of 2021 established high-powered botnet armies and rebalanced the scales between volumetric and direct-path (non-spoofed) attacks, creating more sophisticated operating procedures for attackers and adding new tactics, techniques, and methods to their arsenals.

“While it may be tempting to look at the decrease in overall attacks as threat actors scaling back their efforts, we saw significantly higher activity compared to pre-pandemic levels,” said Richard Hummel, threat intelligence lead, NETSCOUT. “The reality is that attackers are constantly innovating and adapting new techniques, including the use of server-class botnets, DDoS-for-Hire services, and increased used direct-path attacks that continually perpetuate the advancement of the threat landscape.”

Other key findings from the NETSCOUT 2H2021 Threat Intelligence Report include:

  • DDoS Extortion and Ransomware Operations are on the rise. Three high-profile DDoS extortion campaigns simultaneously operating is a new high. Ransomware gangs including Avaddon, REvil, BlackCat, AvosLocker, and Suncrypt were observed using DDoS to extort victims. Because of their success, ransomware groups have DDoS extortion operators masquerading as affiliates like the recent REvil DDoS Extortion campaign.
  • VOIP Services were Targets of DDoS Extortion. Worldwide DDoS extortion attack campaigns from the REvil copycat were waged against several VOIP services providers. One VOIP service provider reported $9M-$12M in revenue loss due to DDoS attacks.
  • DDoS-for-Hire services made attacks easy to launch. NETSCOUT examined 19 DDoS-for-Hire services and their capabilities that eliminate the technical requirements and cost of launching massive DDoS attacks. When combined, they offer more than 200 different attack types.
  • APAC attacks increased by 7% as other regions subsided . Amid ongoing geopolitical tensions in China, Hong Kong, and Taiwan, the Asia-Pacific region saw the most significant increase in attacks year over year compared to other regions.
  • Server-class botnet armies arrived. Cybercriminals have not only increased the number of Internet-of-Things (IoT) botnets but have also conscripted high-powered servers and high-capacity network devices, as seen with the GitMirai, Meris, and Dvinis botnets.
  • Direct-path attacks are gaining in popularity . Adversaries inundated organizations with TCP- and UDP-based floods, otherwise known as direct-path or non-spoofed attacks. Meanwhile, a decrease in some amplification attacks drove down the number of total attacks.
  • Attackers targeted select industries . Those hardest hit include software publishers (606% increase), insurance agencies and brokers (257% increase), computer manufacturers (162% increase), and colleges, universities, and professional schools (102% increase)
  • The fastest DDoS attack recorded a 107% year-over-year increase. Using DNS, DNS amplification, ICMP, TCP, ACK, TCP RST, and TCP SYN vectors, the multi-vector attack against a target in Russia recorded 453 Mpps.

NETSCOUT's Threat Intelligence Report covers the latest trends and activities in the DDoS threat landscape. It covers data captured from NETSCOUT's Active Level Threat Analysis System (ATLAS™) coupled with insights from NETSCOUT's ATLAS Security Engineering & Response Team.

The visibility and insights compiled from the global DDOS attack data, which is represented in the Threat Intelligence Report and can be seen in the Omnis Threat Horizon portal, fuel the ATLAS Intelligence Feed used across NETSCOUT's Omnis security portfolio to detect and block threat activity for enterprises and service providers worldwide.

Visit our interactive website for more information on NETSCOUT's semi-annual Threat Intelligence Report. You can also find us on Facebook , LinkedIn , and Twitter for threat updates and the latest trends and insights.

About NETSCOUT

NETSCOUT SYSTEMS, INC. (NASDAQ: NTCT) helps assure digital business services against security, availability, and performance disruptions. Our market and technology leadership stems from combining our patented smart data technology with smart analytics. We provide real-time, pervasive visibility and insights customers need to accelerate and secure their digital transformation. Omnis® Cyber Intelligence delivers the fastest and most scalable network security solution available on the market. NETSCOUT nGenius® service assurance solutions provide real-time, contextual analysis of service, network, and application performance. And Arbor® Smart DDoS Protection by NETSCOUT products help protect against attacks that threaten availability and advanced threats that infiltrate networks to steal critical business assets. To learn more about improving service, network, and application performance in physical or virtual data centers or in the cloud, and how NETSCOUT's security and performance solutions can help you move forward with confidence, visit www.netscout.com or follow @NETSCOUT on Twitter, Facebook, or LinkedIn.

©2022 NETSCOUT SYSTEMS, INC. All rights reserved. NETSCOUT, the NETSCOUT logo, Guardians of the Connected World, Adaptive Service Intelligence, Arbor, ATLAS, Cyber Threat Horizon, InfiniStream, nGenius, nGeniusONE, and Omnis are registered trademarks or trademarks of NETSCOUT SYSTEMS, INC., and/or its subsidiaries and/or affiliates in the USA and/or other countries. Third-party trademarks mentioned are the property of their respective owners.

Social Media:

https://www.facebook.com/NETSCOUTinc

About Business Wire

Business Wire
Business Wire
101 California Street, 20th Floor
CA 94111 San Francisco

http://businesswire.com

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

EVE Energy Strengthens European Operations Through Compliance, Local Manufacturing, and Regional Services2.7.2026 08:30:00 CEST | Press release

The Smarter E Europe 2026 opened in Munich on June 23 and runs through June 25, gathering global players from the clean energy sector on one of Europe’s most influential trade exhibition platforms. EVE Energy unveiled its Mr. Big Family series, a 6.9+ MWh energy storage system, all-scenario storage solutions, and high-performance EV batteries — showcasing its lithium-sodium dual-technology platform, full product portfolio, and localized European operational layout. During the exhibition, European clients showed strong interest in the company’s product performance and placed strong emphasis on sustained adherence to the EU’s evolving regulatory standards. This industry attitude further underscores that regulatory compliance readiness has become a fundamental prerequisite for accessing the European clean energy market. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260701651416/en/ The BMW iX3 displayed at the EVE Energy booth

Braun Launches the Next Generation of Electric Shaver With Braun NEVO Introducing a New Dawn of Smooth Touch2.7.2026 08:00:00 CEST | Press release

With over 100 years of exceptional German craftsmanship, Braun introduces Braun NEVO, an electric shaver redefining what a close shave and smooth skin mean. Every element has been reimagined: the sleek unibody stainless steel handle, the revolutionary AeroTouch™ Technology and advanced personalized display deliver a perfectly close shave without sacrificing comfort. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260701842080/en/ Braun NEVO Shaver Oliver Grabes, Braun Head of Design, said: “At Braun, we set out to reimagine the shaving experience which led to the development of AeroTouch™ Shaving Technology, a cutting system engineered for ultra-low friction on the skin and high efficiency. This makes Braun NEVO our best shaver* setting a new standard for smooth skin.” Introducing the revolutionary world’s first AeroTouch™ Technology, featuring 250 diamond-sharp cutting edges and an exclusive Ultra gliding foil for a smooth g

Brenus Pharma Strengthens Its Governance With Designation of a New President and Appointment of Former Novo Nordisk EVP as Independent Member2.7.2026 08:00:00 CEST | Press release

Brenus Pharma, today announced key appointments to its board of directors. The company welcomes Eric DESSERTENNE, as President & Chairman of the board, succeeding co-founder Jacques GARDETTE, who will remain an active board member. Eric brings extensive experience in healthcare innovation and value creation, having notably led BIOCORP through its development and acquisition by Novo Nordisk. Brenus also appoints Camilla SYLVEST, as a second independent director, following the earlier addition of Diala EZZEDDINE a seasoned US-based biotech executive and entrepreneur. Camilla SYLVEST is an experienced pharmaceutical executive and global business leader, having spent nearly three decades at Novo Nordisk A/S, where she most recently served as Executive Vice President for Global Commercial Strategy, Corporate Communication and Sustainability. She currently serves on the Boards of Argenx SE, Getinge AB, and Zealand Pharma A/S, and has previously served on the Board of Danish Crown A/S and as

Access Advance and Alibaba Announce Alibaba's Expanded Participation in the VDP Pool2.7.2026 02:00:00 CEST | Press release

Access Advance LLC and Alibaba Group today announced that Alibaba has joined the Access Advance Video Distribution Patent Pool (VDP Pool) as a Licensee, securing a license to the pool's comprehensive coverage of HEVC, VVC, VP9, and AV1 codec technologies. The announcement marks a milestone in a multi-year collaboration between the two companies that spans the VVC Advance Patent Pool, where Alibaba participates as both a Licensor and Licensee, and the VDP Pool, where Alibaba joined as a Licensor in 2025. Alibaba's subsidiary Youku, one of China's leading streaming platforms, also joined the VDP Pool as a Licensee in 2025. Alibaba operates one of the world's most diverse video ecosystems, spanning a wide range of video-based services across e-commerce, entertainment, and digital media. As video has become central to how consumers shop, communicate, and access entertainment, the breadth of Alibaba's video operations reflects the kind of business model complexity the VDP Pool was designed

Vertex Announces US FDA Approval for Expanded Use of CASGEVY® for the Treatment of People Ages 2 Years and Older With Sickle Cell Disease or Transfusion-Dependent Beta Thalassemia2.7.2026 01:58:00 CEST | Press release

- First and only approved genetic therapy to treat children as young as 2 years for both severe sickle cell disease and transfusion-dependent beta thalassemia -- Approximately 5,500 additional children in the U.S. are now eligible for this established one-time therapy, expanding upon the prior FDA approval in people 12 years and older -- Regulatory review for label expansion underway in the Kingdom of Saudi Arabia and United Kingdom - Vertex Pharmaceuticals Incorporated (Nasdaq: VRTX) announced today that the U.S. Food and Drug Administration (FDA) has approved expanded use of CASGEVY® (exagamglogene autotemcel) for the treatment of people ages 2 years and older with either sickle cell disease (SCD) with recurrent vaso-occlusive crises (VOCs) or transfusion-dependent beta thalassemia (TDT). CASGEVY is the first approved genetic therapy indicated for children as young as 2 years for both SCD and TDT. “Just as we redefined what is possible in cystic fibrosis, our ambition is to transform

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom
World GlobeA line styled icon from Orion Icon Library.HiddenA line styled icon from Orion Icon Library.Eye