Skip to content
Information Technology

Radware’s First Half 2024 Report: Web DDoS Attacks Climb 265%

Radware 4 mins read

 

Worldwide geopolitical tensions drive attacks with emphasis on the application infrastructure

 

News Highlights

In the first half of 2024:

  • Application-Layer DNS DDoS attack activity quadruples compared to the first half of 2023
  • North American online applications and APIs shoulder 66% of web attacks
  • EMEA organisations face more than 90% of web DDoS attacks
  • Finance organisations experience 44% of network-layer DDoS attacks
  • The average number of Pro-Russian attacks targeting Ukraine doubles compared to the average number in 2023

 

Radware® (NASDAQ: RDWR), a global leader in application

security and delivery solutions for multi-cloud environments, released its H1 2024 Global Threat Analysis Report.

 

“During the first half of 2024, high-intensity, volumetric attacks surged, marked by a growing emphasis on the application infrastructure,” said Pascal Geenens, Radware’s director of threat intelligence. “World-wide geopolitical tensions, including conflicts in Europe and the Middle

East, as well as international events, like country elections, Eurovision, UEFA Euro, and the Olympics, continue to drive malicious activity. In the back half of the year, we expect attacks to continue to climb, as more threat actors adopt AI technology democratised through increasingly powerful and publicly available large language models. The gravity of the upcoming election in the United States and concerns over decelerating financial markets are also set to fuel cyber disruption.”

 

Radware’s report leverages intelligence provided by network and application attack activity sourced from the company’s Cloud and Managed Services and threat intelligence research team. In addition, it draws from information found on Telegram, a public messaging platform often used by cybercriminals.

 

Web DDoS attacks climb more than 200%

Web DDoS attacks made significant gains in frequency and intensity.

  • Number of attacks: In the first half of 2024, Web DDoS attacks surged globally 265% compared to the second half of 2023.
  • Geographic targets: Organizations in EMEA were the primary target of Web DDoS attacks between January and June of 2024, shouldering more than 90% of the attacks.

 

 

Recently, Radware reported a record-breaking six-day Web DDoS attack campaign, targeting a financial institution. It consisted of multiple waves, which lasted 4- to 12-hours, amounting to a total of 100 hours of attack time and sustaining an average of 4.5 million RPS with a peak of

14.7 million RPS.

 

Network-layer DDoS attack volumes increase exponentially

During the first half of 2024:

  • Attack volume: Average DDoS volume blocked per organization grew by 293% in EMEA, 116% in the Americas, and 302% in APAC, compared to the same period in 2023.
  • Geographic targets:
    • The Americas faced 58% of global attacks and 37% of the volume, while EMEA accounted for 23% of the attacks but mitigated 56% of the global volume.
    • The APAC region accounted for almost 19% of attacks and 7% of the global volume.
  • Industry targets: Globally, finance organizations experienced the highest attack activity (44%), followed by healthcare (17%), technology (10%), and government (7%).

 

Application-layer DNS DDoS attack activity quadruples

Between January and June of 2024:

  • Attack activity:
    • DNS DDoS attack activity quadrupled compared to the first half of 2023.
    • The number of malicious DNS queries grew by 76% compared to the total number of queries observed during all of 2023.
  • Industry targets: Finance was the most targeted industry, representing 52% of the total Layer 7 DNS Flood attack activity. Healthcare, telecom, and research and education were other notable industries.

 

Hacktivist DDoS activity continues unabated

During the first half of 2024, the hacktivist landscape remained dynamic with constant DDoS activities. According to data gathered from Telegram:

  • Number of attacks: Hacktivist-driven DDoS attacks hovered between 1,000 to 1,200 claimed attacks per month.
  • Top actors claiming DDoS attacks: NoName057(16) remained the most active threat actor by a significant margin, claiming 1,902 attacks, followed by Executor DDoS (577 claimed attacks) and Cyber Army of Russia Reborn (437 claimed attacks).
  • Geographic targets: Ukraine was the most targeted country with 741 claimed attacks compared to 744 attacks in all of 2023. The United States ranked second (604 claimed attacks), followed by Israel (542 claimed attacks), and India (364 claimed attacks).

 

  • Website targets: Government websites were top hacktivist targets, especially in Ukraine, Israel and India. Business and economy followed by travel were the second and third most targeted websites respectively.

 

“Following the conflict between Russia and Ukraine, Telegram has continued to inspire many hacktivists and other ill-intended groups to make a move for the platform,” said Geenens. “It’s become a major hub for cyber criminals, making it easier for them to recruit volunteers, build global alliances, create and sell attack services, and exchange cryptocurrency.”

 

Web application and API attacks rise

During the first half of 2024:

  • Number of attacks: Web application and API attacks increased by 22% compared to the second half of 2023.
  • Geographic targets: The majority of web attacks (66%) were targeting applications and APIs located in North America. Applications in EMEA accounted for 23% of the attack activity.

 

Radware’s complete 2024 Global Threat Analysis Report can be downloaded here.

 

About Radware

Radware® (NASDAQ: RDWR) is a global leader in application security and delivery solutions for multi-cloud environments. The company’s cloud application, infrastructure, and API security solutions use AI-driven algorithms for precise, hands-free, real-time protection from the most sophisticated web, application, and DDoS attacks, API abuse, and bad bots. Enterprises and

carriers worldwide rely on Radware’s solutions to address evolving cybersecurity challenges and protect their brands and business operations while reducing costs. For more information, please visit the Radware website.

 

More from this category

  • Information Technology
  • 23/01/2025
  • 00:26
Equativ

Equativ Unveils Maestro by Equativ: Its Most Advanced End-to-End Curation Platform for Enhanced Campaign Performance and Greater Control for Advertisers

A pioneer in curation technology reveals a next-generation solution designed to enable efficient, transparent transactions and equitable value distribution across the digital advertising ecosystemNEW YORK, Jan. 22, 2025 (GLOBE NEWSWIRE) -- Equativ, a global independent adtech company, today announced major upgrades to its all-in-one curation platform, Equativ Buyer Connect (EBC), now renamed Maestro by Equativ, that centralizes programmatic campaign management and provides ad buyers with direct access to high-quality, scaled supply. Since launching its curation platform four years ago, Equativ has gathered feedback from over 500 media agencies (including all six of the Big Six Advertising Agencies), publishers, and data…

  • Information Technology
  • 23/01/2025
  • 00:11
Cribl

Cribl Surpasses $200M in ARR, Growing more than 70 percent Year-over-Year

Company accelerates enterprise data leadership; Appoints industry veteran Mike Pyle as chief revenue officerSAN FRANCISCO, Jan. 22, 2025 (GLOBE NEWSWIRE) -- Cribl, the Data Engine for IT and Security, today announced it has surpassed $200 million in annual recurring revenue (ARR), growing ARR by more than 70 percent year-over-year (YoY). This follows the company’s achievement of $100 million in ARR in October 2023, when it became the fourth fastest infrastructure company to reach centaur status. Cribl’s growth trajectory is supported by its $319 million oversubscribed Series E round in August of 2024, which brought its valuation to $3.5 billion as…

  • Information Technology, Internet
  • 22/01/2025
  • 00:00
Rhino.ai

Rhino.ai Announces $50M Series A to Transform Enterprise Modernization

Koch Venture Capital Group, Koch Disruptive Technologies, Leads Funding Round WASHINGTON, D.C. – January 21, 2025– Rhino.ai, a leading AI-powered enterprise platform, announced $50 million in Series A funding led by Koch Disruptive Technologies. The investment will fuel Rhino.ai’s mission to help organizations transform outdated systems into agile, scalable solutions. By combining agentic AI with human expertise,Rhino.ai's intelligent platform analyzes complex legacy systems and automatically generates modernized applications in any desired technology stack. While traditional modernization tools focus on code conversion,Rhino.ai orchestrates the entire transformation journey - from deep system analysis to collaborative requirements, refinement and automated development - reducing…

Media Outreach made fast, easy, simple.

Feature your press release on Medianet's News Hub every time you distribute with Medianet. Pay per release or save with a subscription.