1.趋势
1.1 攻击规模越来越大,也越来越复杂
1.2 DDoS攻击越来越多地转向移动网络和物联网
1.3 DDoS和网络战
1.4 DDoS和COVID-19
1.5 勒索拒绝服务(RDoS)
1.6 从基于UDP攻击转向基于TCP攻击
1.7 云和DDoS
1.8 DDoS攻击分布
1.8.1 地理分布
1.8.2 行业部门分布
1.9 攻击载体
1.10 VoIP提供商观察到DDoS勒索攻击的数量有所增加
1.11 额外的趋势
参考文献
[1]Federal Office for Information Security (BSI), The State of IT Sec in Germany, September 2020.
[2]Europol, Internet Organised Crime Threat Assessment (IOCTA) 2020, https://www.europol.europa.eu/activities-services/main-reports/internetorganised-crime-threat-assessment-iocta-2020.
[3]CISA, Understanding Denial-of-Service Attacks, November 2019. https://www.uscert.gov/ncas/tips/ST04-015.
[4]Sergiu Gatlan, 'FBI: Thousands of orgs targeted by RDoS extortion campaign' September 2020, https://www.bleepingcomputer.com/news/security/fbi-thousands-of-orgs-targeted-by-rdos-extortion-campaign/.
[5]CloudBric, DDoS Extortion Campaigns (Ransom DDoS, or RDoS) To Watch Out For, https://www.cloudbric.com/blog/2020/11/ddos-rdos-extortionransomware-campaign/.
[6]H2020 EU Project CONCORDIA, Deliverable D4.1 - 1st year report on cybersecurity threats, https://www.concordia-h2020.eu/wpcontent/uploads/2020/06/D4.1_Ready_for_Submission_D4.1-final_revised.pdf.
[7]Vova Kamenker, DDoS Threats: The Fifth Dimension of Warfare, September 2021, https://blog.mazebolt.com/ddosthreats-the-fifth-dimension-of-warfare.
[8]Tom Emmons. 2021: Volumetric DDoS Attacks Rising Fast, March 2021, https://blogs.akamai.com/2021/03/2021-volumetric-ddos-attacks-rising-fast.html.
[9]https://www.netscout.com/threatreport.
[10]David Warburton, 2022 Application Protection Report: DDoS Attack Trends, March 2022, https://www.f5.com/labs/articles/threat-intelligence/2022-application-protection-report-ddos-attack-trends.
[11]Mitre Att&ck, Endpoint Denial of Service, https://attack.mitre.org/techniques/T1499/.
[12]https://blog.cloudflare.com/cloudflare-thwarts-17-2m-rps-ddos-attack-the-largest-ever-reported/.
[13]https://blog.cloudflare.com/ddos-attack-trends-for-2021-q4/.
[14]Neustar, Cyber Threats & Trends Report: Defending Against A New Cybercrime Economy.
[15]ESET Threat Report, T3 2021.
[16]https://blog.cloudflare.com/ddos-attack-trends-for-2022-q1/.
[17]https://www.bbc.com/news/technology-60500618.
[18]https://www.netscout.com/blog/asert/ddos-threat-landscape-ukraine.
[19]https://www.nbcnews.com/tech/security/hacktivists-new-veteran-target-russia-one-cybers-oldest-tools-rcna20652.
[20]ETH Zürich, Center for Security Studies (CSS), The Evolving Cyber Threat Landscape during the COVID Crisis, 2020.
[21]https://www.manilatimes.net/2021/08/14/opinion/columns/cyberhackers-sabotaging-manilas-vaccination-program/1810897.
[22]Neustar, Pay Or Else: DDoS Ransom Attacks.
[23]https://www.usenix.org/system/files/sec21fall-bock.pdf.
[24]https://portswigger.net/daily-swig/nation-state-threat-how-ddos-over-tcp-technique-could-amplify-attacks.
[25]https://www.akamai.com/blog/security/tcp-middlebox-reflection.
[26]Accenture-2021-Cyber-Threat-Intelligence-Report fornito da enisa.
[27]https://blog.cloudflare.com/ddos-attack-trends-for-2021-q3/.
[28]Neustar, DDoS DISRUPTION IMPACTS - The Need for Always-On Security.
[29]https://news.lumen.com/2022-02-17-Lumen-scrubbed-more-than-20,000-enterprise-DDoS-attacks-in-2021.
[30]Neustar, Cyber Threats & Trends Report: Defending Against A New Cybercrime Economy.
[31]ISSUE 8: FINDINGS FROM 2ND HALF 2021 NETSCOUT THREAT INTELLIGENCE REPORT, https://www.netscout.com/sites/default/files/2022-03/ThreatReport_2H2021_WEB.pdf.
[32]Acronis_Cyber_Threat_Report_2022_1649135585.
[33]The Global Economic Forum, The Global Risks Report 2021 16th Edition, 2021, http://www3.weforum.org/docs/WEF_The_Global_Risks_Report_2021.pdf.
[34]Accenture-2021-Cyber-Threat-Intelligence-Report.
中国保密协会
科学技术分会
长按扫码关注我们
作者:白广轩
责编:蔡北平
2022年精彩文章TOP5回顾
近期精彩文章回顾
原文始发于微信公众号(中国保密协会科学技术分会):可用性威胁:拒绝服务
- 左青龙
- 微信扫一扫
-
- 右白虎
- 微信扫一扫
-
评论