MA-NETSCOUT-SYSTEMS
22.3.2022 11:02:06 CET | Business Wire | Press release
NETSCOUT SYSTEMS, INC., (NASDAQ: NTCT) today announced findings from its bi-annual Threat Intelligence Report . During the second half of 2021, cybercriminals launched approximately 4.4 million Distributed Denial of Service (DDoS) attacks, bringing the total number of DDoS attacks in 2021 to 9.75 million. These attacks represent a 3% decrease from the record number set during the height of the pandemic but continue at a pace that's 14% above pre-pandemic levels.
The report details how the second half of 2021 established high-powered botnet armies and rebalanced the scales between volumetric and direct-path (non-spoofed) attacks, creating more sophisticated operating procedures for attackers and adding new tactics, techniques, and methods to their arsenals.
“While it may be tempting to look at the decrease in overall attacks as threat actors scaling back their efforts, we saw significantly higher activity compared to pre-pandemic levels,” said Richard Hummel, threat intelligence lead, NETSCOUT. “The reality is that attackers are constantly innovating and adapting new techniques, including the use of server-class botnets, DDoS-for-Hire services, and increased used direct-path attacks that continually perpetuate the advancement of the threat landscape.”
Other key findings from the NETSCOUT 2H2021 Threat Intelligence Report include:
- DDoS Extortion and Ransomware Operations are on the rise. Three high-profile DDoS extortion campaigns simultaneously operating is a new high. Ransomware gangs including Avaddon, REvil, BlackCat, AvosLocker, and Suncrypt were observed using DDoS to extort victims. Because of their success, ransomware groups have DDoS extortion operators masquerading as affiliates like the recent REvil DDoS Extortion campaign.
- VOIP Services were Targets of DDoS Extortion. Worldwide DDoS extortion attack campaigns from the REvil copycat were waged against several VOIP services providers. One VOIP service provider reported $9M-$12M in revenue loss due to DDoS attacks.
- DDoS-for-Hire services made attacks easy to launch. NETSCOUT examined 19 DDoS-for-Hire services and their capabilities that eliminate the technical requirements and cost of launching massive DDoS attacks. When combined, they offer more than 200 different attack types.
- APAC attacks increased by 7% as other regions subsided . Amid ongoing geopolitical tensions in China, Hong Kong, and Taiwan, the Asia-Pacific region saw the most significant increase in attacks year over year compared to other regions.
- Server-class botnet armies arrived. Cybercriminals have not only increased the number of Internet-of-Things (IoT) botnets but have also conscripted high-powered servers and high-capacity network devices, as seen with the GitMirai, Meris, and Dvinis botnets.
- Direct-path attacks are gaining in popularity . Adversaries inundated organizations with TCP- and UDP-based floods, otherwise known as direct-path or non-spoofed attacks. Meanwhile, a decrease in some amplification attacks drove down the number of total attacks.
- Attackers targeted select industries . Those hardest hit include software publishers (606% increase), insurance agencies and brokers (257% increase), computer manufacturers (162% increase), and colleges, universities, and professional schools (102% increase)
- The fastest DDoS attack recorded a 107% year-over-year increase. Using DNS, DNS amplification, ICMP, TCP, ACK, TCP RST, and TCP SYN vectors, the multi-vector attack against a target in Russia recorded 453 Mpps.
NETSCOUT's Threat Intelligence Report covers the latest trends and activities in the DDoS threat landscape. It covers data captured from NETSCOUT's Active Level Threat Analysis System (ATLAS™) coupled with insights from NETSCOUT's ATLAS Security Engineering & Response Team.
The visibility and insights compiled from the global DDOS attack data, which is represented in the Threat Intelligence Report and can be seen in the Omnis Threat Horizon portal, fuel the ATLAS Intelligence Feed used across NETSCOUT's Omnis security portfolio to detect and block threat activity for enterprises and service providers worldwide.
Visit our interactive website for more information on NETSCOUT's semi-annual Threat Intelligence Report. You can also find us on Facebook , LinkedIn , and Twitter for threat updates and the latest trends and insights.
About NETSCOUT
NETSCOUT SYSTEMS, INC. (NASDAQ: NTCT) helps assure digital business services against security, availability, and performance disruptions. Our market and technology leadership stems from combining our patented smart data technology with smart analytics. We provide real-time, pervasive visibility and insights customers need to accelerate and secure their digital transformation. Omnis® Cyber Intelligence delivers the fastest and most scalable network security solution available on the market. NETSCOUT nGenius® service assurance solutions provide real-time, contextual analysis of service, network, and application performance. And Arbor® Smart DDoS Protection by NETSCOUT products help protect against attacks that threaten availability and advanced threats that infiltrate networks to steal critical business assets. To learn more about improving service, network, and application performance in physical or virtual data centers or in the cloud, and how NETSCOUT's security and performance solutions can help you move forward with confidence, visit www.netscout.com or follow @NETSCOUT on Twitter, Facebook, or LinkedIn.
©2022 NETSCOUT SYSTEMS, INC. All rights reserved. NETSCOUT, the NETSCOUT logo, Guardians of the Connected World, Adaptive Service Intelligence, Arbor, ATLAS, Cyber Threat Horizon, InfiniStream, nGenius, nGeniusONE, and Omnis are registered trademarks or trademarks of NETSCOUT SYSTEMS, INC., and/or its subsidiaries and/or affiliates in the USA and/or other countries. Third-party trademarks mentioned are the property of their respective owners.
View source version on businesswire.com: https://www.businesswire.com/news/home/20220322005111/en/
Social Media:
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Incyte Data to Be Highlighted in Four Rapid Oral Presentations at the European Society for Medical Oncology (ESMO) Congress 2026 Support Efforts to Improve Outcomes in Difficult-to-Treat Cancers17.7.2026 19:10:00 CEST | Press release
Rapid oral presentations will highlight new Phase 1 data across Incyte’s solid tumor portfolioBoth INCB161734, an investigational, potent, selective and orally bioavailable KRAS G12D inhibitor, and INCA338901, a TGFβR2×PD-1 bispecific antibody, are being evaluated in ongoing Phase 3 programs as first-line treatments for patients with advanced pancreatic ductal adenocarcinoma (PDAC) and microsatellite stable (MSS) colorectal cancer, respectively Incyte (Nasdaq:INCY) today announced that it will highlight data from several programs in its oncology portfolio in six presentations at the European Society of Medical Oncology (ESMO) Congress 2026, being held October 23 - 27, 2026, in Madrid. “The data at ESMO will further illustrate Incyte’s commitment to advancing innovation for patients with cancer,” said Pablo J. Cagnoni, M.D., President, Incyte and Global Head of Research and Development. "Among the presentations are important updates from our KRAS G12D inhibitor in advanced pancreatic ca
STL Expands Its Optical Connectivity Portfolio in the US with the CONCAT Solution17.7.2026 14:24:00 CEST | Press release
STL Optical Connectivity NA, LLC, (STLOC), a U.S. subsidiary of STL (Sterlite Technologies Ltd.) [NSE: STLTECH], a leading connectivity solutions provider for AI-ready digital infrastructure, today announced that it launched its new advanced FTTH solution, CONCAT, after successfully completing field trials on the networks of one of the largest telecom service providers in the United States. Following successful field validation, CONCAT is now available to digital infrastructure providers seeking faster fiber rollouts with reduced deployment complexity and labor. It enables up to 71% in labor cost savings by eliminating most field splicing through factory-assembled, pre-connectorized fiber segments that deliver plug-and-play installation. CONCAT simplifies fiber deployment by shifting critical fiber preparation and termination into a controlled manufacturing environment ensuring consistent quality, faster installation, and lower operational risk in the field. CONCAT solution is ideal fo
Aqemia and Sanofi Expand Their Research Collaboration17.7.2026 12:30:00 CEST | Press release
A new target nomination and a milestone payment mark the next step of the multi-year partnership first announced in December 2023 Aqemia, the drug invention company combining generative AI and quantum-inspired physics to invent small molecule drugs, today announced the expansion of its multi-year research collaboration with the global pharmaceutical company, Sanofi. The expansion is marked by the nomination of a new therapeutic target and an additional payment. The collaboration, first announced in December 2023, makes Aqemia eligible to receive up to a total of $140 million in upfront and milestone payments across programs. It spans the drug discovery journey from the identification of the very first hits to the selection of a development candidate. Aqemia leverages Qemi, its proprietary physics-based generative AI platform, to design novel molecules addressing Sanofi’s targets of choice, working in close collaboration with Sanofi scientific teams. Sanofi leads wet lab research, devel
China's ~$900B Live-Commerce Market Now Approaches US E-Commerce Scale17.7.2026 12:30:00 CEST | Press release
The consumer habits reshaping global retail were built in the East — and most Western shoppers haven't yet adopted them. NIQ report shows that brands still treating live, social, and quick commerce as "emerging" risk being left behind. The center of gravity in global retail has shifted East. The formats now driving the fastest growth in global retail (live shopping, social commerce, and delivery in minutes) were pioneered and scaled in Asia, and most Western consumers have yet to adopt them. According to NIQ (NYSE: NIQ), a leading consumer intelligence company, in its global report The Commerce Revolution: Where East Meets West, the gap between East and West is still vast. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260717253489/en/ China´s USD 900bn live shopping boom now approaches the scale of the US E-commerce The scale is already substantial. China's live-commerce market alone was worth roughly $900 billion in 2025,
Ant International’s Alipay+ Connects Argentina's National QR Payment Scheme via PVS,Enabling for Cross-Border Digital Payment Nationwide at Millions of Merchants17.7.2026 12:17:00 CEST | Press release
Alipay+, a global digital payment gateway under Ant International, today announced that it will enable global travellers to make QR code payments at millions of merchants across Argentina through integration with the country's national QR payment scheme Transferencias 3.0, in partnership with PVS, a fintech company specialized in developing customized payment solutions in Latin America. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260717276406/en/ By connecting to Argentina's national QR payment scheme, Alipay+ now enables global travellers in the country to make convenient QR code payments at merchants nationwide. This service helps to enhance global travellers' travel experiences in Argentina, allowing them to pay seamlessly at restaurants, malls and tourist attractions. Using an Alipay+ partner payment app, they can now scan the national QR code displayed at all merchants to make cross-border payments across Argentina,
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom
