DDoS-as-a-Service Fuels 60% of Cyberattacks in Europe
In the first half of 2024, Europe faced a sharp increase in the number of cyberattacks linked to Distributed Denial of Service (DDoS). According to a study by FalconFeeds.io, 3,529 DDoS incidents were recorded during this period, accounting for 60% of all cyberattacks analyzed by experts. A significant factor in this surge is the proliferation of DDoS-as-a-Service (DDoSaaS) offerings through platforms like Telegram.
DDoS attacks, unlike traditional DoS attacks, are far more destructive due to their distributed nature. They leverage numerous systems operating simultaneously, making them particularly challenging to defend against. Telegram poses a notable threat in this context, as cybercriminals actively promote DDoS attack services on the platform. Over 140 channels and groups are engaged in selling such services, with 80% of them continuing to operate actively, accepting payment in cryptocurrency. This makes these attacks accessible to a broad range of users, including those without specialized technical knowledge.
The cost of these attacks varies, with the simplest ones starting at $10 per month, while more complex and prolonged assaults can cost thousands of dollars. Telegram is rife with advertisements for various tools capable of conducting attacks, such as Lava C2/API, SOCKET, and others, which can target hundreds of IP addresses simultaneously, bypass defenses, and cause significant disruption to the targeted systems.
Cybercriminals frequently employ DDoS attacks for financial gain, political objectives, competitive sabotage, or even revenge. As platforms like Telegram continue to evolve and the accessibility of DDoSaaS increases, these attacks are becoming more frequent and potent, underscoring the urgent need to strengthen cybersecurity measures.
The rise in DDoS attacks is also linked to the growing number of insecure Internet of Things (IoT) devices used to create massive botnets. These devices generate enormous traffic volumes, making the attacks even more dangerous. There is also a trend toward using DDoS attacks as part of complex cybercriminal operations, often in combination with other types of attacks such as phishing or malware distribution.
To protect against DDoS attacks, organizations are advised to implement multi-layered security measures, including network and application-level solutions, traffic monitoring, and incident response planning. The use of cloud-based DDoS protection services and regular attack response drills can help mitigate risks and safeguard critical infrastructure.
The growing popularity of DDoS-as-a-Service on Telegram highlights the need for enhanced monitoring of cybercriminal activity in the digital space and the implementation of advanced protective technologies to prevent potential threats.
