DDoS peak traffic increased 100% between January 2020-May 2021

According to Nokia Deepfield, daily DDoS peak traffic has increased by 100% in Jan 2020 and May 2021. Poorly secured IoT devices and Cloud are to blame, according to the CTO of Nokia Deepfield.

Nokia’s IP network and data analytics arm were able to conduct a fingerprint and origin analysis of network traffic through their work with global service providers, webscale companies and digital enterprises. Craig Labovitz, CTO of Nokia Deepfield, unveiled the global DDoS traffic analysis findings at NANOG82 this week. The analysis found that there has been a massive increase in high-bandwidth, volumetric DDoS attacks, the majority of which originate from just a few dozen hosting companies. 

It is pertinent to note that these large-scale DDoS attacks can inflict major damage to connectivity infrastructure and service availability, which can cost up to millions of dollars in production and operational losses.

In this context, accurate DDoS detection and automated mitigation are becoming the primary requirements of service providers, cloud builders, and network operators to protect their network infrastructures, services, and users.

As COVID lockdown measures were implemented in 2020, Nokia Deepfield noticed a 40-50% increase in DDoS traffic. The continued increases in intensity, frequency and sophistication of DDoS attacks have resulted in a 100% increase in the “high watermark levels” of DDoS daily peaks – from 1.5 Tbps (January 2020) to over 3 Tbps (May 2021). With broadband connectivity becoming an essential service, the fight against DDoS is critical. These large-scale DDoS attacks can inflict major damage on individual and large-scale connectivity and service availability, resulting in damages costing hundreds of thousands or even millions of dollars in production and operational losses. Accurate DDoS detection and cost-effective, automated mitigation are becoming paramount requirements for service providers, cloud builders and network operators to protect their network infrastructures, services and users.

It is equally important for every participant in the network security ecosystem – end-users, vendors, service providers, cloud builders, regulators, and governments – to understand the dangers DDoS poses to the availability of internet content, applications, and critical connectivity services,” said Craig Labovitz, CTO, Nokia Deepfield.