Let's see what happens to the "undervalued" attacks DDoS. Σήμερα, η πιθανότητα να πέσουν οι επιχειρήσεις θύμα κυβερνοεπίθεσης είναι μια στις πέντε. Ταυτόχρονα, μια επίθεση συνοδεύεται από αρκετές ώρες αναστολής λειτουργιών, ενώ το κόστος αποκατάστασης των ζημιών ανέρχεται έως και στα $417.000.
This is a summary of the consequences of a typical DDoS attack, which were analyzed in detail in the recent survey "Corporate IT Security Risks", which was held by Kaspersky Lab and B2B International in 2015.
According to the survey, 20% of enterprises with 50 or more employees have suffered at least one DDoS attack, with the largest businesses being hit the most (24%). In addition, more than a quarter of DDoS attacks lead to the loss of sensitive data, an unexpected and detrimental consequence for businesses.
The results of previous Kaspersky Lab reports show that DDoS attacks can lead to significant financial loss for small and medium-sized businesses. DDoS attacks are the fourth most expensive type of security breach facing small and medium businesses.
On average, restoring a DDoS attack costs more than $ 50.000 in a small and medium-sized business, much more than the usual costs associated with restoring other types of attacks. Businesses spend a lot to recover from a third-party failure or a digital espionage attack, but the typical financial damage of a DDoS attack is below average for large businesses ($ 417.000 compared to the average of $ 620.000 required for the recovery from other types of attacks).
Small businesses were more likely to lose data as a result of a DDoS attack. In particular, 31% of small and medium-sized enterprises reported data loss compared to 22% of large enterprises.
This shows that small and medium enterprises are struggling to implement effective measures to mitigate the threat of DDoS attacks, often due to limited resources.
The term "DDoS" is used for various attack technologies, and the methods to prevent such attacks can be difficult to understand and expensive to implement. According to analysis of attitudes towards DDoS attacks, it is observed that about half of the companies consider it worth the additional investment in DDoS attack prevention technologies.
Variety of losses: shutdown, lost deals, data loss
DDoS attacks last several hours and can cause a service to stop completely. Some attacks can be even more damaging. 9% of attacks that cause apactivation of a service last from two days to one week, while in 7% of cases the duration reached several weeks or more. However, the damage is not limited to the outage.
According to those surveyed, the 32% of the serious DDoS attacks coincided with attacks on the network. Although it is difficult to identify two different attacks on a single source, the results of the research show that DDoS attacks can lead to additional damage, including the loss or theft of sensitive data.
"Companies need to re-evaluate their knowledge and perceptions about DDoS attacks. The report clearly shows that the extent of the damage from such attacks is not limited to the temporary shutdown of a corporate website. Companies report a total interruption of their operations and - in some cases - loss of sensitive data. However, many businesses feel that the mitigation strategy is too complex and costly. The solution to this problem is simple: vendors have to take up their own technological challenges by offering an easy-to-use application and use solution for their customers. This is the approach we have chosen for Kaspersky DDos Protection solution »
commented Evgeny Vigovsky, Kaspersky Lab Kaspersky Lab's Kaspersky Lab Protection Team Leader.
The full version of the investigation into the implications and perceptions of DDoS attacks is available on the Kaspersky Lab website (PDF)
