According to Akamai’s Q2 2015 “State of the Internet — Security” report, built from data harvested across Akamai’s networks, DDoS attacks continue to rise — and attackers continue to change their games in surprising ways.
Among the trends singled out in the report: Attacks are not only getting bigger in terms of total traffic, but are more aggressively exploiting limitations in older protocols (“infrastructure layer” attacks), and they’re happening at a large enough scale that even Internet backbone hardware is at risk of being routinely gummed up.
Infrastructure attacks involve abusing limitations in existing protocols to flood victims with spurious data requests. Three of the protocols in the report showing an uptick in activity — RIPv1, CHARGEN, and NTP — are older or outright obsolete protocols. While the Linux Foundation is spearheading attempts to fix these protocols, such repairs don’t come on short notice.