The number of DDoS attacks globally has more than doubled in 2024, according to Imperva’s DDoS Threat Landscape report. The report attributes the 111% increase primarily to geopolitical tensions, with Ukraine and Israel experiencing significant surges in attacks. In February, an Indonesian gaming site faced the year’s most significant Layer 7 DDoS attack with 4.7 million requests per second.
Targeted Industries and New Attack Vectors
The first half of 2024 saw financial services, telecoms, and ISPs being the most targeted industries, making up nearly 60% of all Layer 7 DDoS attacks. Imperva’s study highlighted the critical threat posed to ISPs, essential for maintaining internet services and economic functions. The report also identified two new major application layer DDoS attack vectors: HTTP/2 Rapid Reset and HTTP/2 Continuation Frame Attacks, both exploiting vulnerabilities in the HTTP/2 protocol to overwhelm servers with low traffic volumes.

Increasing DNS Attacks
The report revealed a staggering 215% increase in DNS attacks, with DNS amplification attacks growing by 483% in size. DNS DDoS attacks, which accounted for 6% of network DDoS attacks in the first half of 2022, surged to over 21% in the first half of 2024.
Future Threats and the Role of AI
Imperva warned of potential election-related DDoS attacks, Mirai botnet variants, and evolving hacking groups. The report also noted that the use of AI by attackers is accelerating the frequency and scale of DDoS attacks. AI tools can automate sophisticated DDoS attacks, enabling even novice hackers to launch powerful attacks, highlighting the need for enhanced security measures to protect critical infrastructure.
Key Takeaways
- Surge in DDoS Attacks: 111% increase globally, driven by geopolitical tensions.
- Most Targeted Industries: Financial services, telecoms, and ISPs.
- New Attack Vectors: HTTP/2 Rapid Reset and HTTP/2 Continuation Frame Attacks.
- Rising DNS Attacks: 215% increase in DNS DDoS attacks, significant rise in DNS amplification attacks.
- Future Threats: Election-related attacks, Mirai botnet variants, and AI-driven attacks.
Conclusion
The rapid increase in DDoS attacks in 2024 underscores the evolving threat landscape. Imperva’s findings highlight the critical need for robust security measures to protect against sophisticated and large-scale attacks. As attackers continue to leverage AI and other advanced technologies, organizations must stay vigilant and proactive in their cybersecurity strategies.
Source: https://www.itpro.com/security/cyber-attacks/global-ddos-attacks-have-doubled-in-2024