DDoS attacks are a greater security threat to businesses in 2017 than ever, and Internet Service Providers (ISPs) need to do something about it according to a new survey of IT security people and network operators.
The annual study, the Corero DDoS Impact Survey 2017, polled technology decision makers and IT security people at the 2017 RSA Security Conference last month in San Francisco. This year’s survey found that a majority (56 percent) of the nearly 100 respondents view DDoS attacks as greater and graver concern in 2017 than in previous years.
The DDoS product company says DDoS attacks continue to increase in frequency, scale and sophistication. Some 31 percent of IT security and network operators polled in this year’s survey experienced more DDoS attacks than usual in recent months, with 40 percent now experiencing attacks on a monthly, weekly or even daily basis. To alleviate this problem, 85 percent are now demanding more help from their ISPs to block DDoS traffic before it reaches them.
The findings follow reports that Britain’s new National Cyber Security Centre (NCSC) is putting pressure on ISPs to rewrite Internet standards around spoofing, to reduce the volume of DDoS attack traffic on their networks. Dr Ian Levy, technical director at NCSC, has called for ISPs to make changes to the Border Gateway Protocol (BGP) and Signalling System 7 (SS7) standards, to halt the re-routing of traffic used in simple, volumetric DDoS attacks.
Rob Ayoub, Research Director at IDC says: “Organisations that once had DDoS protection projects on the back burner are now re-prioritizing their security strategies to place DDoS mitigation at the forefront in 2017. As new, large scale attacks have come online leveraging IoT devices, the DDoS threat has become top of mind for CISOs. This shift in precedence puts increased pressure on Internet and cloud providers to enable this protection for their customers, and eliminate DDoS threats closer to the source.”
Ashley Stephenson, CEO at Corero Network Security, says: “ISPs have long carried the burden of defending their own network against DDoS attacks, but as the threat landscape has changed, so must their response. Providers will likely find themselves at an important crossroads during the next year, as pressure builds on them from both customers and governments to address the growing DDoS problem. By accepting a greater responsibility for defending their customers and networks against DDoS attacks, ISPs could modernize their security service offerings and increase customer satisfaction – in contrast, ignoring this call to action could open up the possibility of future regulatory controls related to DDoS protection.”
The study found that more than half, 58 percent of cyber security people are still relying on ‘home grown’ open source solutions, or traditional security infrastructure like firewalls, to protect themselves against DDoS attacks. Just more than a third (36 percent) are adopting cloud-based solutions, including scrubbing centers, and an additional 35 percent are using on-premises DDoS mitigation products.
While most (85 percent) believe their ISP should be dealing with the DDoS problem for them, as part of their service, almost half (46 percent) indicated they would be prepared to pay an extra fee to have DDoS traffic removed before it reaches their network. Of those who were willing to pay their ISP for such a premium service, almost three quarters (74 percent) would consider spending up to a quarter of their total ISP spend to eliminate this threat.
Stephenson adds: “There is clearly a valuable business benefit for ISPs to position themselves as leading the charge against DDoS attacks, both in protecting their own infrastructure and enabling them to offer more comprehensive security solutions to their customers, as a paid-for managed service. DDoS attacks are becoming more frequent, more complex and more significant, so it is not surprising that so many security teams would rather outsource the solution to this important problem to their ISP.”
The study found the biggest risk factor, which was cited by almost half of the respondents (45 percent), was the potential for loss of customer trust and confidence. Lost revenues were also a serious concern (cited by 17 percent), while malware infection (15 percent) and lost revenues (13 percent) were also seen as potential problems. Visit https://www.corero.com/resources/2017-ddos-survey-infographic.html.
