Hackers are increasingly turning to distributed denial-of-service (DDoS) attacks to take companies offline or steal their sensitive data, according to a new report from Corero Network Security PLC (LON:CNS).
In Q3 2017, organizations experienced an average of 237 DDoS attack attempts per month—or eight per day, the report found. These numbers represent a 35% increase in monthly attack attempts from Q2, and a whopping 91% increase from Q1.
Why the massive rise? Researchers believe that the reason is twofold: The growing availability in DDoS-for-hire services, and the implementation of many unsecured Internet of Things (IoT) devices.
DDoS-for-hire services have lowered the barriers of entry for criminals to carry out these attacks, in terms of both technical ability and cost, Ashley Stephenson, CEO of Corero, said in a press release. Now, almost anyone can systematically attack and attempt to take down a company for less than $100.
And in terms of IoT risks, earlier this year the Reaper botnettargeted known vulnerabilities in IoT devices and hijacked them, including internet-connected webcams, security cameras, and digital video recorders. Each time a device is infected, the device spreads the malware to other vulnerable devices, expanding its reach.
“Cyber criminals try to harness more and more Internet-connected devices to build ever larger botnets,” Stephenson said in the release. “The potential scale and power of IoT botnets has the ability to create Internet chaos and dire results for target victims.”