DDoS attacks have been costing enterprises up to £35,000 per attack in lost business and productivity plus mitigation costs, but lost revenue is considered to be only the fourth most damaging consequence of this type of cyberattack, a survey has revealed.
The majority of respondents cited the loss of customer trust and confidence, the risk of intellectual theft and the threat of malware infection, as the most damaging effects on business arising from the attacks, according to surveys.
The Corero research polled more than 300 security professionals worldwide from a range of industries including financial services, cloud, government, online gaming and media sectors.
The survey also revealed that 69% of respondents said their organisation experiences between 20 and 50 DDoS attack attempts a month, which is roughly one attack per day.
But despite this high figure, the vast majority of respondents (78%) cited the loss of customer trust and confidence as the single most damaging effect on business of DDoS attacks.
The second-highest ranked threat was the risk of intellectual property theft. Followed by the threat of malware infection associated with a DDoS attack. Lost revenue was only considered to be the fourth most damaging consequence.
Ashley Stephenson, CEO at Corero Network Security, says DDoS attacks can have an ‘immediate and damaging’ impact on a company’s bottom line, both in terms of lost revenue and the costs incurred to mitigate attacks.
“Not all DDoS attacks will cost an organisation £35,000, but having your website taken offline can damage customer trust and confidence. It will also impact the ability of sales teams to acquire new customers in increasingly competitive markets,” Ashely adds.
DDoS attacks, says Ashley, cause lasting damage to a company’s reputation and could have negative consequences for customer loyalty, churn and corporate profits.
The research also highlights the growing complexity of the attacks. Their capacity to act as a distraction for more serious network incursions.
The majority of those surveyed (85%) believe that the attacks are used by attackers as a precursor or smokescreen for data breach activity.
In addition, 71% reported that their organisation has experienced a ransom-driven DDoS attack.
“A DDoS attack can often be a sign that an organisation’s data is also being targeted by cyber criminals. As demonstrated by the infamous Carphone Warehouse attack. DDoS attacks can be used as a smokescreen for non-DDoS hacking attempts on the network,” says Ashley.
“Hackers will gladly take advantage of distracted IT teams and degraded network security defences. To exploit other vulnerabilities for financial gain. Considering the huge liability that organisations can face in the event of a data breach. IT teams must be proactive in defending against the DDoS threat, and monitor closely for malicious activity on their networks,” he adds.
Participants also viewed the attacks as more of a concern in 2018 than in the past. The clear majority (83%) cited the proliferation of unsecured (IoT) devices as the top reason for this concern. Closely followed by the association between DDoS and data breach activity.
Attacks are also becoming more complex to mitigate. With more than 15 employees typically involved in diffusing the threat. When an attack strikes, according to two-thirds of respondents (66%).
“In recent month’s we’ve witnessed new records set for the size of DDoS attacks. As criminals exploited the Memcached amplification attack vector to headline grabbing effect,” continues Ashley.
“This has written a new chapter in the DDoS record books and made Terabit-scale attacks a reality. The Memcached vulnerability also exposed additional breach and data corruption risks. As attackers can also exploit these poorly secured servers to steal or temporarily modify customer data.”