DDoS Statistics for the DACH Region

The Link11 DDoS report for Germany, Austria and Switzerland proves that DDoS attacks are increasing. During the 2nd quarter of 2016 the LSOC registered a total of 9,422 attacks. This is an increase of 36% compared to the 1st quarter. The attack duration summed up to 1,744 hours and increased by a whopping 123.9% compared to the previous research time frame.

The most important facts from the DDoS report for the 2nd quarter of 2016

  • The largest DDoS attack reached a peak bandwidth of 141.9 Gbps. The Attack targeted a German gaming platform.
  • Seven further Hyper Attacks breached the 100 Gbps mark as well.
  • The data transfer rate peaked at 46.2 million packets per second. The attackers used UDP Floods.
  • The most frequent used attack vectors were UDP Floods, TCP SYN Floods and UDP Fragments.
  • One attack with 10 vectors was targeted at an e-commerce service in Germany.
  • While the share of DNS, NTP and SSDP Reflection Attacks has gone down, the attacks using Gaming Server Reflection have been on the rise during the 2nd quarter.
  • The share of encryption-based HTTP attacks has increased from 0% to 4% in the DACH region. HTTPS Floods are hard to defend because the packets with TSL and SSL encryption have to be decrypted for secure filtering.
  • For the first time, the use of the TFTP protocol to execute reflection attacks could be verified in the three attacks targeting businesses in Austria.

Link11 provides extensive insight on the growing threat of DDoS attacks in Central Europe in its tri-monthly released DDoS reports.

08 attacks blocked month
Number of ddos attacks we block per month
09 block watch
Every 7 minutes we block a ddos attack
10 largest attack
Largest attack mitigated in the last 30 days in Mbits