Business Wire

MA-NETSCOUT-SYSTEMS

22.3.2022 11:02:06 CET | Business Wire | Press release

Share
Bad Actors Innovate, Extort and Launch 9.7M DDoS Attacks in 2021 According to the Latest NETSCOUT Threat Intelligence Report

NETSCOUT SYSTEMS, INC., (NASDAQ: NTCT) today announced findings from its bi-annual Threat Intelligence Report . During the second half of 2021, cybercriminals launched approximately 4.4 million Distributed Denial of Service (DDoS) attacks, bringing the total number of DDoS attacks in 2021 to 9.75 million. These attacks represent a 3% decrease from the record number set during the height of the pandemic but continue at a pace that's 14% above pre-pandemic levels.

The report details how the second half of 2021 established high-powered botnet armies and rebalanced the scales between volumetric and direct-path (non-spoofed) attacks, creating more sophisticated operating procedures for attackers and adding new tactics, techniques, and methods to their arsenals.

“While it may be tempting to look at the decrease in overall attacks as threat actors scaling back their efforts, we saw significantly higher activity compared to pre-pandemic levels,” said Richard Hummel, threat intelligence lead, NETSCOUT. “The reality is that attackers are constantly innovating and adapting new techniques, including the use of server-class botnets, DDoS-for-Hire services, and increased used direct-path attacks that continually perpetuate the advancement of the threat landscape.”

Other key findings from the NETSCOUT 2H2021 Threat Intelligence Report include:

  • DDoS Extortion and Ransomware Operations are on the rise. Three high-profile DDoS extortion campaigns simultaneously operating is a new high. Ransomware gangs including Avaddon, REvil, BlackCat, AvosLocker, and Suncrypt were observed using DDoS to extort victims. Because of their success, ransomware groups have DDoS extortion operators masquerading as affiliates like the recent REvil DDoS Extortion campaign.
  • VOIP Services were Targets of DDoS Extortion. Worldwide DDoS extortion attack campaigns from the REvil copycat were waged against several VOIP services providers. One VOIP service provider reported $9M-$12M in revenue loss due to DDoS attacks.
  • DDoS-for-Hire services made attacks easy to launch. NETSCOUT examined 19 DDoS-for-Hire services and their capabilities that eliminate the technical requirements and cost of launching massive DDoS attacks. When combined, they offer more than 200 different attack types.
  • APAC attacks increased by 7% as other regions subsided . Amid ongoing geopolitical tensions in China, Hong Kong, and Taiwan, the Asia-Pacific region saw the most significant increase in attacks year over year compared to other regions.
  • Server-class botnet armies arrived. Cybercriminals have not only increased the number of Internet-of-Things (IoT) botnets but have also conscripted high-powered servers and high-capacity network devices, as seen with the GitMirai, Meris, and Dvinis botnets.
  • Direct-path attacks are gaining in popularity . Adversaries inundated organizations with TCP- and UDP-based floods, otherwise known as direct-path or non-spoofed attacks. Meanwhile, a decrease in some amplification attacks drove down the number of total attacks.
  • Attackers targeted select industries . Those hardest hit include software publishers (606% increase), insurance agencies and brokers (257% increase), computer manufacturers (162% increase), and colleges, universities, and professional schools (102% increase)
  • The fastest DDoS attack recorded a 107% year-over-year increase. Using DNS, DNS amplification, ICMP, TCP, ACK, TCP RST, and TCP SYN vectors, the multi-vector attack against a target in Russia recorded 453 Mpps.

NETSCOUT's Threat Intelligence Report covers the latest trends and activities in the DDoS threat landscape. It covers data captured from NETSCOUT's Active Level Threat Analysis System (ATLAS™) coupled with insights from NETSCOUT's ATLAS Security Engineering & Response Team.

The visibility and insights compiled from the global DDOS attack data, which is represented in the Threat Intelligence Report and can be seen in the Omnis Threat Horizon portal, fuel the ATLAS Intelligence Feed used across NETSCOUT's Omnis security portfolio to detect and block threat activity for enterprises and service providers worldwide.

Visit our interactive website for more information on NETSCOUT's semi-annual Threat Intelligence Report. You can also find us on Facebook , LinkedIn , and Twitter for threat updates and the latest trends and insights.

About NETSCOUT

NETSCOUT SYSTEMS, INC. (NASDAQ: NTCT) helps assure digital business services against security, availability, and performance disruptions. Our market and technology leadership stems from combining our patented smart data technology with smart analytics. We provide real-time, pervasive visibility and insights customers need to accelerate and secure their digital transformation. Omnis® Cyber Intelligence delivers the fastest and most scalable network security solution available on the market. NETSCOUT nGenius® service assurance solutions provide real-time, contextual analysis of service, network, and application performance. And Arbor® Smart DDoS Protection by NETSCOUT products help protect against attacks that threaten availability and advanced threats that infiltrate networks to steal critical business assets. To learn more about improving service, network, and application performance in physical or virtual data centers or in the cloud, and how NETSCOUT's security and performance solutions can help you move forward with confidence, visit www.netscout.com or follow @NETSCOUT on Twitter, Facebook, or LinkedIn.

©2022 NETSCOUT SYSTEMS, INC. All rights reserved. NETSCOUT, the NETSCOUT logo, Guardians of the Connected World, Adaptive Service Intelligence, Arbor, ATLAS, Cyber Threat Horizon, InfiniStream, nGenius, nGeniusONE, and Omnis are registered trademarks or trademarks of NETSCOUT SYSTEMS, INC., and/or its subsidiaries and/or affiliates in the USA and/or other countries. Third-party trademarks mentioned are the property of their respective owners.

Social Media:

https://www.facebook.com/NETSCOUTinc

About Business Wire

Business Wire
Business Wire
101 California Street, 20th Floor
CA 94111 San Francisco

http://businesswire.com

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

Garvan Institute of Medical Research Joins Parse Biosciences’ Certified Service Provider Network15.7.2026 22:00:00 CEST | Press release

Researchers across Asia-Pacific gain a new option for high-quality single cell sequencing through Garvan's Evercode WT services Parse Biosciences, a QIAGEN company, and the leader in scalable and accessible single cell sequencing, today announced that the Genomics Platform Core Facility within the Garvan Institute of Medical Research has joined its Certified Service Provider (CSP) Program. The partnership broadens access to high-quality, scalable single cell sequencing across Australia, the wider Asia-Pacific region, and beyond. Garvan is one of Australia's preeminent medical research institutions, with the Genomics Platform having deep experience in cell sorting, capture, and sequencing. As a Certified Service Provider, Garvan will offer Parse's Evercode WT kits to researchers across the region. "We see a growing number of requests for Parse projects and find the technology easy to implement and run, generating great data," said Chris O'Keeffe, Cellular Genomics Lead at the Garvan Ins

Grafana Labs Named a Leader in 2026 Gartner® Magic Quadrant™ for Observability Platforms and Positioned Furthest in Completeness of Vision15.7.2026 20:21:00 CEST | Press release

Named a Leader for the third consecutive year and placed furthest in vision for the second year in a row, the company has had a landmark year of innovation as observability becomes essential infrastructure for teams building and running AI at scale. Grafana Labs, the company behind the open observability cloud, today announced it has been named a Leader in the Gartner® Magic Quadrant™ for Observability Platforms for the third consecutive year, and positioned furthest on the Completeness of Vision axis for the second year running. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260715814984/en/ 2026 Gartner® Magic Quadrant™ for Observability Platforms We believe this placement reflects where the market is headed: toward open, composable observability that helps teams in the AI era understand systems that are increasingly complex and agentic, and rapidly scaling thanks to AI-assisted engineering. A Platform Built for the AI Era

Spectro Cloud Raises $100 Million Series D to Help Customers Move AI Infrastructure Into Production Across Enterprise, Public Sector, Neocloud and Sovereign Cloud Environments15.7.2026 18:20:00 CEST | Press release

Growth Equity at Goldman Sachs Alternatives leads oversubscribed round with strategic participation from AMD Ventures, Ericsson, LG Technology Ventures, and Maximus as organizations look to turn AI silicon into business outcomes Spectro Cloud, a leading provider of AI infrastructure management software, today announced it has raised more than $100 million in an oversubscribed Series D funding round led by Growth Equity at Goldman Sachs Alternatives, with strategic participation from AMD Ventures, Ericsson, LG Technology Ventures, and Maximus. The new funding brings Spectro Cloud’s total capital raised to $260 million and will accelerate the company’s mission to help enterprises, public sector organizations, neoclouds and sovereign clouds build and operate production AI infrastructure with greater control over cost, security and governance. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260715551858/en/ Spectro Cloud raises $

K-Beauty Goes Global: Sales Surge 53% as Korean Innovation Reshapes Beauty Growth15.7.2026 16:00:00 CEST | Press release

New NIQ data shows K-Beauty value sales rose 53% year-over-year and 131% over two years, underscoring how regional beauty trends, social commerce and ingredient-led innovation are reshaping global beauty growth. NIQ (NYSE: NIQ), a global leader in consumer intelligence, today released new findings showing K-Beauty has become a rapidly growing global beauty segment, with value sales up 53% year-over-year and 131% over the past two years. The data points to a broader shift in beauty growth, as regional innovation, social commerce and digitally driven consumer demand increasingly shape what scales globally. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260715867578/en/ K-Beauty accelerates across global markets In its latest report, K-Beauty Goes Global, NIQ shows how Korean beauty is reshaping consumer expectations, accelerating innovation cycles and redefining competitive dynamics across the global beauty market. What began

Viz.ai to Support the MINUTE Trial, a Landmark Multicenter Study Evaluating the SCUBA Technique for the Treatment of Intracerebral Hemorrhage15.7.2026 15:00:00 CEST | Press release

Viz Neuro™ Suite, including Viz ICH™ and Viz ICH Plus™, to facilitate rapid detection and care coordination for patients with basal ganglia hemorrhage across trial sites nationwide. Viz.ai, the leader in AI-powered disease detection and intelligent care coordination, today announced its support for the Minimally Invasive Neurosurgery Trial for Ultra-early Treatment (MINUTE) Trial, a prospective, multicenter, randomized study evaluating whether the SCUBA technique, an endoscopic, catheter-based approach for ultra-early evacuation of basal ganglia intracerebral hemorrhage (BGH), is a promising alternative to standard medical management to potentially improve functional patient outcomes. The study aims to initiate both randomization and surgical intervention within 120 minutes of key clinical time points, reflecting the urgent nature of intracerebral hemorrhage care. Participating sites will have the ability to leverage the Viz Neuro Suite platform, including Viz ICH and Viz ICH Plus, to

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom
World GlobeA line styled icon from Orion Icon Library.HiddenA line styled icon from Orion Icon Library.Eye