DDoS attacks see a huge rise as criminals get braver and more ambitious

DDoS attack
(Image credit: FrameStockFootages / Shutterstock)

Improvements in the automation and sophistication of distributed denial of service (DDoS) attacks are making hackers bolder, leading to the number of such incidents rising significantly, new research has claimed.

A report from Cloudflare found in the first half of 2024, its tools mitigated 8.5 million DDoS attacks against its clients. Of that number, 4.5 million happened in Q1, and 4 million in Q2. Overall, the number of DDoS attacks in Q2 dropped by 11% quarter-on-quarter, but rose 20% year-on-year, the company said.

The final number for 2024 is probably going to be even bigger, since Cloudflare already mitigated 60% of last year’s figure (which was 14 million DDoS attacks).

Access to sophisticated tools

Breaking the figures down further, Cloudflare, which operates a 280 terabit per second network, located across more than 320 cities worldwide, and serving almost a fifth (19%) of all websites, said it had already observed 2.2 million network-layer DDoS attacks, and 1.8 million HTTP DDoS attacks. 

This number of 1.8 million HTTP DDoS attacks has been normalized to compensate for the “explosion in sophisticated and randomized HTTP DDoS attacks,” they said. Cloudflare’s automated mitigation systems create real-time fingerprints for DDoS attacks, and due to the randomized nature of the attacks, the company observed “many fingerprints” being generated for single attacks - probably around 19 million.

One of the catalysts for these randomized, sophisticated attacks was easier access to advanced tools, previously only reserved for state-sponsored threat actors, the report claims. “Coinciding with the rise of generative AI and autopilot systems that can help actors write better code faster, these capabilities have made their way to the common cyber criminal.”

Cybersecurity researchers from Imperva seem to agree with this assessment. In their report, published at roughly the same time, it was said that the rise in the volume of DDoS attacks was “driven by the easier availability of DDoS tools that allow even individuals with limited technical expertise to launch significant attacks. The shift towards automation in these tools has further lowered the barrier to entry, enabling a broader range of cybercriminals to participate in DDoS activities.”

In the second quarter of 2024, China was ranked the most attacked country in the world, with firms in the IT sector bearing the brunt of the attacks. Argentina was the number one source of DDoS attacks, followed by Indonesia, and the Netherlands.

More from TechRadar Pro

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
Web DDoS attacks see major surge as AI allows more powerful attacks
An image of network security icons for a network encircling a digital blue earth.
Standing strong against hyper-volumetric DDoS attacks
DDoS Attack
World's largest DDoS attack blocked, Cloudflare claims
Ransomware attack on a computer
Ransomware attacks surged in 2024 as hackers looked to strike faster than ever
Android phone malware
Over 25 new malware variants created every single hour as smart device cyberattacks more than double in 2024
Insecure network with several red platforms connected through glowing data lines and a black hat hacker symbol
Cisco, ASUS, QNAP, and Synology devices hijacked to major botnet
Latest in Security
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
Android Logo
Devious new Android malware uses a Microsoft tool to avoid being spotted
URL phishing
HaveIBeenPwned owner suffers phishing attack that stole his Mailchimp mailing list
Ransomware
Cl0p resurgence drives ransomware attacks to new highs in 2025
Google Chrome
Google Chrome security flaw could have let hackers spy on all your online habits
cybersecurity
Chinese government hackers allegedly spent years undetected in foreign phone networks
Latest in News
A young woman is working on a laptop in a relaxed office space.
I’ll admit, Microsoft’s new Windows 11 update surprised me with its usefulness, providing accessibility fixes, a gamepad keyboard layout, and PC spec cards
inZOI promotional material.
inZOI has become the most wishlisted game on Steam, but I wouldn't get too caught up in the hype
Xbox Series X and Xbox wireless controller set to a green background
Xbox Insiders are currently testing a new Game Hub feature that looks useful, but I've got mixed feelings about it
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
Nespresso Vertuo Pop machine in Candy Pink with coffee drinks and capsules
My favorite Nespresso coffee maker just got a fresh new makeover, and now I love it even more
Microsoft Surface Laptop and Surface Pro devices on a table.
Hate Windows 11’s search? Microsoft is fixing it with AI, and that almost makes me want to buy a Copilot+ PC