6 Key Findings Security Findings for Service Providers
•
0 likes•162 views
While DDoS attacks evolve in size, volume, frequency, and complexity each year, attackers never stray from one bedrock principle: If it’s important to network operators and enterprises, it’s important to them.
Report
Share
More Related Content
What's hot
What's hot (18)
Similar to 6 Key Findings Security Findings for Service Providers
Similar to 6 Key Findings Security Findings for Service Providers (20)
More from NETSCOUT
More from NETSCOUT (16)
Recently uploaded
Recently uploaded (20)
6 Key Findings Security Findings for Service Providers
- 1. From the 15th Annual Worldwide Infrastructure Security Report (WISR) SERVICE PROVIDER 6 KEY FINDINGS Multi-vector attacks are up; DDoS attacks are a top concern of service providers While DDoS attacks evolve in size, volume, frequency, and complexity each year, attackers never stray from one bedrock principle: If it’s important to network operators and enterprises, it’s important to them. In 2019, 58% of service providers reported multi-vector attacks. And 65% say DDoS attacks are a top concern for 2020. Service providers are turning to third parties when it comes to Security Operation Center (SOC) capabilities. The people problem is so acute that even at companies where the network is the business, 42% either have no SOC at all, outsource completely, or use the hybrid model. The challenging hiring market has caused more enterprises to turn to service providers for security support, as more than half of service providers reported growing interest in DDoS managed services from customers. Cloud/hosting providers were the top vertical expressing interest, up from 5th place last year. As we predicted, this has led to an explosion in managed security service offerings. Nation-state groups proliferate globally while cybercriminals seem one step ahead of the game, targeting not only enterprises and service providers, but also their customers. Key digital transformation technology like cloud services and mobile networks and devices have become prime targets, while botmasters eagerly take advantage of the ongoing deluge of vulnerable IoT devices. These adversaries are smart and motivated, and we can count on them discovering and weaponizing new attack vectors or adding new variations to existing ones. Publicly exposed service infrastructure is #2 concern for service providers Attacks on publicly exposed service infrastructure such as cloud services increased dramatically. 51% of service providers reported such attacks in 2019 compared with only 38% in 2018. 55% call it a top concern for 2020. Telecommunications is number 1, 2, and 4 — out of 4 on the top sub-vertical sectors with a combined 1,991,927 attack frequency. Carpet Bombers Sideswipe Satellite Telecoms Satellite telecommunications saw significant increase in attacks, with 295 percent increase in attack frequency, likely due to scenarios such as the high-impact carpet-bombing attacks that targeted financial organizations in Asia Minor and Europe in 2H 2019. By sharing large netblocks with organizations that didn’t have their own IP space, the satellite telecommunications providers experienced significant collateral damage from these attacks. Focus Point: Mobile Networks Adversaries turned up the attack volume on the wireless telecommunications sector, with a 64% increase in attack frequency and a 33% increase in max attack size. Gaming continues to be a large motivation for attacks, and mobile networks are increasingly popular access points, since users in many Asian countries rely on their phone service for wireless hotspots. Attackers naturally follow their targets, leading to the upward attack growth in the sector. Attacks in the wired telecommunications sector, meanwhile, grew at a comparatively modest 3%. 1 2 3 4 5 6 Hot service provider attack targets Telecommunications is hackers’ choice Interest grows in managed security services from 47% to 60% from 2018 to 2019 Service providers need third-party assistance with their SOCs THE TAKEAWAY READ THE FULL REPORT GET MORE DDoS INFO FOR CSPs © 2020 NETSCOUT SYSTEMS, INC. All rights reserved. NETSCOUT, and the NETSCOUT logo are registered trademarks of NETSCOUT SYSTEMS, INC., and/or its subsidiaries and/or affiliates in the USA and/or other countries. All other brands and product names and registered and unregistered trademarks are the sole property of their respective owners. SPIG_005_EN-2002 05/2020 Say DDoS attacks are top concern for 202065% Reported multi-vector attacks58% Inbound DDoS attacks from external networks Attacks on publicly exposed service infrastructure (DNS, carrier cloud, etc.) Route hijacking Outbound/Crossbound DDoS from on-net customers and devices Bandwidth saturation (streaming, over-the-top services, unique events, flash crowds, etc.) Attacks on routing protocols Large-scale malware outbreaks (e.g. WannaCry, Petya) Compromise of management network Peer gaming Threats Concerns 69% 64% 51% 55% 58% 49% 19% 42% 31% 36% 15% 13% 10% 9% 10% 39% 36% 36% 34% 42% Infrastructure outages (partial or complete due to equipment failure of misconfigurations) Increase in attack frequency295% Increase in attack frequency64% Wired Telecommunications Carriers Wireless Telecommunications Carriers Telecommunications Data Processing, Hosting + Related Services 1 2 3 4 Rank Vertical Max AttackAttack Frequency Classification 1,073,851 575,749 467,475 342,327 421.5 Gbps 348.9 Gbps 243.4 Gbps 492.5 Gbps Information Information Information Information Figure 2: Top Four Sub-Vertical Sectors Internal SOC Internal SOC with supplemental Third Party (hybrid) Third Party SOC (outsourced) No SOC resources 56% 18% 12% 12% Figure 1: Service Provider Threats vs. Concerns The overall threat landscape only knows one direction: up. Figure 4: SP SOC Team Resources 60%47%in 2018 in 2019