According to the latest NETSCOUT Threat Intelligence Report, the German e-commerce sector recorded around 2021 DDoS attacks in the second half of 16,918. This represents an increase of 7.5% compared to the first half of 2021 and makes the industry the second strongest attack target in Germany after data processing services for the second year in a row.
“Even as pandemic restrictions ease, the trend towards online shopping will continue. As cybercriminals continue to develop new techniques and methods to blackmail their targets, there is no question that an online retailer will be hit by a DDoS attack.” According to Karl Heuser, Account Manager Security DACH at NETSCOUT.
DDoS attacks combined with ransomware
Increasingly, ransomware gangs are using triple ransomware attacks that combine ransomware, data theft, and DDoS attacks to pressure merchants into paying the ransom. In most cases, victims pay the ransom to avoid losing customer data and damaging business reputation. Attackers have also created new malware that uses a form of machine learning that adapts to its immediate environment and goes undetected. For example, phishing attacks are becoming more sophisticated and use multiple channels, including SMS and voice calls. Not to mention that launching DDoS attacks with illegal DDoS-for-Hire services doesn't even require a small fee or technical know-how anymore.
Attacks on e-commerce providers are increasing
Another problem is that online shops and e-commerce providers offer their services via encrypted channels. During this period, a particularly large number of attacks were observed at the application layer over HTTP/S. Looking at the bandwidth and throughput of attacks on applications and services on the HTTP/S standard, TCP port 443 over a period of two years, there is a clear trend towards stronger attacks.
While it is important that the adoption of the most widely used security protocol on the Internet, TLS 1.3, proceeds expeditiously, organizations must address the associated increase in complexity and overhead while ensuring that their publicly facing offerings and services are designed and implemented in a way that they ensure maximum resilience to such DDoS attacks.
More at Netscout.com
About NETSCOUT NETSCOUT SYSTEMS, INC. helps secure digital business services against security, availability and service disruptions. Our market and technology leadership is based on the combination of our patented smart data technology with intelligent analytics. We provide the comprehensive, real-time insight that customers need to accelerate and secure their digital transformation. Our advanced Omnis® cybersecurity platform for threat detection and mitigation offers comprehensive network visibility, threat detection, contextual investigations and automated mitigation at the network edge.