Accept

By using this web site you accept our use of cookies.

Significant increase in the number of DDoS attacks so far this year

EVRY recorded a total of 80 DDoS attacks in the first eight months of 2015, compared to 20 such attacks in the same period in 2014. Behind this increase is the alarming growth in threat attacks, together with a sustained number of attacks in the ‘vandal’ category.

EVRY recorded a total of 80 DDoS attacks in the first eight months of 2015, compared to 20 such attacks in the same period in 2014. Behind this increase is the alarming growth in threat attacks, together with a sustained number of attacks in the ‘vandal’ category.

EVRY recorded numerous targeted distributed denial-of-service attacks combined with serious threats to customers and their infrastructure in the first eight months of this year. These attacks are launched by international groups that deliberately want to test out the defensive capabilities of Norway’s infrastructure in areas critical to society in both the private and public sectors. In certain instances DDoS attacks are a diversionary tactic for other more comprehensive hacking attempts where the aim is to acquire information from organisations. In other instances, attackers start with small DDoS attacks with the attacks potentially escalating if the attackers’ demands are not met.

“It is worrying that these attacks are increasing in scope and becoming more serious. This means that strengthening security in all parts of the value chain is essential. Multiple instances of organisations operating without proper defence against DDoS attacks continue to be seen. It is one of management’s responsibilities to ensure that such vulnerabilities are limited”, comments Tore Larsen Orderløkken, Vice President for Security, Quality and Risk Management at EVRY. He also highlights the importance of suppliers, the authorities and businesses working well together on security issues.

“It is important for everyone to continuously share their experience and knowledge so that we have a common understanding of the range of threats. This starting point enables each individual organisation to take action and all parts of the value chain to work together on specific security measures. We need to face up to the fact that security does come at a cost, and the damage caused in the first eight months of this year could have been avoided if organisations had had proper defences in place”, continues Tore Larsen Orderløkken.

Security efforts need to be strengthened

EVRY averts many DDoS attacks using automated mitigation solutions. The company is also seeing the benefits of its investment in strengthening its infrastructure, such as its networks, firewalls and the amount of separation between its systems.

The figures show that the attacks are becoming longer and that they are directed against numerous customers. There has been a significant increase in amplification attacks, which involve the attacker trying to hide behind a legitimate organisation while in reality trying to block a website. Private companies, publicly owned businesses and municipalities are among the organisations that have been the target of DDoS attacks in the first eight months of 2015.

The figures also show that the number of DDoS attacks that can be categorised as ‘vandalism’ remains high.

“We have a zero-tolerance policy regarding hacking attacks and will report them to the police just like any other criminal activity. We must work to raise awareness of the issues in order to prevent this from spreading”, comments Tore Larsen Orderløkken, Vice President for Security, Quality and Risk Management at EVRY.

EVRY continually monitors all critical infrastructure in order to detect security threats and unwanted traffic. Automatic mitigation solutions and warning messages are used so that attacks can be blocked before denial of service occurs. This applies to customers who have the “DDoS Mitigation” service implemented. EVRY works closely with the authorities, internet service providers and its customers’ security departments, and this includes taking measures to develop the knowledge and expertise of all involved in order to ensure a shared understanding of the range of threats and to strengthen the whole value chain.

The serious consequences of DDoS attacks

A DDoS attack can lead to all communication in and out of a company ceasing entirely. Furthermore, individual components of its infrastructure can be overloaded, causing the value chains that depend on these to stop working. There is a high risk that application services will become unavailable in the event of an attack, which can lead to business-critical solutions ceasing to function. This can lead to customers being unable to access the organisation’s services and to employees not being able to work. Because of the damage that DDoS attacks cause, EVRY advises that all organisations equip themselves with defences against such attacks.

Contact persons
Tore Larsen Orderløkken, VP Security, Quality and Risk Management EVRY.
Tel: +47 90730675

Geir Remman, VP Corporate Communications EVRY.
Tel: +47 97055017

 

About EVRY

EVRY is one of the leading IT companies in the Nordic countries, with a strong local and regional presence in 50 Nordic towns and cities. Through its knowledge, solutions and technology, EVRY contributes to the development of the information society of the future, and so creates value for the benefit of its customers and for society as a whole. EVRY combines in-depth industry knowledge and technological expertise with a local delivery model and international strength.

EVRY has some 10,000 employees, and the Company is committed to demonstrating that Nordic customers are best served by a supplier that understands Nordic business from the inside. EVRY reports annual turnover approaching NOK 13 billion. The Company is listed on Oslo Børs and operates from headquarters at Fornebu in Bærum, with major activities in both the Norwegian and Swedish markets.

Contact us to learn more