Story image

China reigns supreme as Asia's top source - and top target - of DDoS attacks

06 Mar 2018

China is continuing its reign as one of the world’s most prevalent cyberattackers, taking the number two rank for the top five source countries for distributed denial of service (DDoS) attacks and being responsible for more than 28 million web application attack alerts.

Akamai’s State of the Internet Q4 2017 report says that China is second only to Germany for the most DDoS attacks, accounting for 28% of attacks. Germany accounted for 30% of attacks, while the United States (8%), Ecuador (3%) and Austria (3%) rounded out the top five.

Most of that DDoS power was directed at the gaming industry (79%), while other services including internet and telecom (6%) and financial services (4%) were also the main targets.

China also ranked third in the world for the number of web application attacks in Q4 2017. It accounted for 7.1% of attacks, or more than 28 million. The United States accounted for 32% of attacks – more than 128 million.

India also featured seventh in the list as a web application attack source country with 4.1% of attacks, or more than 16 million.

Japan featured 13th in the list (more than 6.5 million attacks); Hong Kong at 16th (3.2 million attacks and Australia at 18th (2.5 million attacks.)

China, India, Japan, Australia and Hong Kong also ranked from fifth to tenth respectively in the list of the top 10 target countries for web application attacks.

China was hit by more than 10.6 million attacks. On the other end of the scale, Hong Kong was hit by more than 6 million.

“A key motive of attackers has always been financial profit. In the past few years, we have seen adversaries move to more direct methods to achieve that goal such as ransomware,” comments Martin McKeay, senior security advocate and senior editor of the report. Akamai believes that cryptocurrency mining will bring chaos for cryptocurrency exchanges in the future.

“Criminals are going to do the same thing that any good businessman does when their market dries up: switch to an adjacent market that has greater potential. We’ve already seen cryptocurrency exchanges be on the receiving end of DDoS attacks. Rather than being part of an extortion campaign though, it’s more likely that these attacks are aimed at frustrating users to get them to move to the attacker’s exchange.”

Bombarding exchanges with attacks could work out to be detrimental for the criminals as genuine investors stop trusting exchanges – essentially killing off criminals’ biggest cash cows.

Instead, Akamai believes criminals will continue to inflate cryptocurrency exchanges and skim profit off some transactions.

“Crypto mining offers attackers the most direct avenue to monetize efforts by putting money immediately into their cryptowallets,” McKeay notes.

Privacy: The real cost of “free” mobile apps
Sales of location targeted advertising, based on location data provided by apps, is set to reach $30 billion by 2020.
Myth-busting assumptions about identity governance - SailPoint
The identity governance space has evolved and matured over the past 10 years, changing with the world around it.
Forrester names Crowdstrike leader in incident response
The report provides an in-depth evaluation of the top 15 IR service providers across 11 criteria.
Slack doubles down on enterprise key management
EKM adds an extra layer of protection so customers can share conversations, files, and data while still meeting their own risk mitigation requirements.
Security professionals want to return fire – Venafi
Seventy-two percent of professionals surveyed believe nation-states have the right to ‘hack back’ cybercriminals.
Alcatraz AI to replace corporate badges with AI security
The Palo Alto-based startup supposedly leverages facial recognition, 3D sensing, and machine learning to enable secure access control.
Ensign and IronNet partner to create cyber analytics capabilities
The Singapore-based joint venture will form a Cyber Analytics Center for Excellence focused on securing regional enterprises from sophisticated cyber threats.
Unencrypted Gearbest database leaves over 1.5mil shoppers’ records exposed
Depending on the countries and information requirements, the data could give hackers access to online government portals, banking apps, and health insurance records.