Information received from botnet monitoring system Kaspersky Lab Kaspersky DDoS Prevention shows that the most powerful attack was 20% stronger compared to the first half of the year, reaching 600 Mbit / sec. The average force of an attack during the second half of 2011 was 110 Mbit / sec - which represents an increase of 57%. use DDoS attacks as an act of protest, as well as a highly effective tool to put pressure on competitors. That said, no surprise that online commerce (online stores, auctions, message boards for advertising sales, etc..) Were the most common target, with the sites in this segment victims from 25% of all recorded attacks.
The proportion of attacks on websites owned by the government is gradually increasing, during the second half of 2011, it was 2%. HTTP Flood, or HTTP Flood, remains the most common type of attack (80%). It involves the simultaneous transmission of a large number of HTTP requests to the site under attack, where the bots are trying to access a single page of the site, or attack various forms of authorization, or running a series of attacks to download a file from the site. A Despite the relative simplicity of these techniques, researchers recently noted a shift away from conventional DDoS attacks that use large amounts of traffic, and is closer to the attacks that lead to substantial errors in operating the server that is under attack. This enables effective DDoS attacks launched with minimal effort from the attacker, ie without the use of large botnets. "This is a perfectly logical progression," says Yury Namestnikov, senior analyst at Kaspersky Lab malware " Large botnets attract the attention of anti-DDoS projects and law enforcement, these botnets can do much less attractive to cyber criminals. They will have to increase the power of attacks using botnets to attack a number of resource at a time. That is why we will not see large DDoS botnets in 2012. Our radars show mainly medium sized botnets, which are powerful enough to collapse any web page, and these botnets are going to become more numerous.
