
Q3 2017 Akamai State of the Internet / Security Report Reveals Significant Increase in Web Application Security Attacks, Evolution of Attacker Strategies Holiday shopping season may see new attack types leveraging IoT devices, mobile platforms
Cambridge, MA | November 28, 2017
Newly released data shows that web application attacks continued to rise significantly in both the quarter-over-quarter and year-over-year timeframes, according to the Third Quarter, 2017 State of the Internet / Security Report released by Akamai Technologies, Inc. (NASDAQ: AKAM). In addition, further evaluation of the Mirai botnet and WireX malware attacks suggests that attackers may leverage IoT and Android devices to build future botnet armies.
The report found that the number of web application attacks last quarter (Q3 2017) increased 69% in total from the same timeframe last year (Q3 2016). In the last quarter alone, web application attacks rose 30% as compared to the second quarter of 2017. Over the last year, a 217% increase in attacks sourcing from the U.S. was seen, with an increase of 48% in the last quarter as compared to the prior one.
SQL injection (SQLi) attacks continued to be heavily utilized by attackers as a part of the significant rise of web application attacks. This attack vector increased 62% since last year, and 19% since last quarter. The significant increase in web application attacks, particularly injection attacks like SQLi, should come as no surprise as the latest version of the OWASP Top 10 2017 that came out last week has injection (inclusive of SQLi) as the top ranked vulnerability category. This new iteration is the first major update to the OWASP Top 10 since 2013, when injection also resided in the top spot.
Perhaps more alarming was the result of taking a closer look at the Mirai botnet and encountering the introduction of WireX malware. While smaller than its predecessor, the Mirai malware strain, which uses Internet of Things (IoT) devices, was responsible for the largest attack seen in Q3 at 109 Gbps. The ongoing Mirai activity, coupled with the introduction of WireX, which commandeers Android devices, highlights the vast potential that exists for new sources of botnet armies.
The lure of easy access to poorly-secured end nodes and easily-available source code make it likely that Mirai-based attacks won't be fading in the near future, said Martin McKeay, senior security advocate and senior editor, State of the Internet / Security Report. Our experience suggests that an army of new potential attackers comes online every day. Couple with that, the ubiquity of Android software and the growth in the Internet of Things are amplifying the risk/reward challenges that enterprises face to tremendous levels.
By the Numbers: Other highlights from Akamai's Third Quarter, 2017 State of the Internet / Security Report include:
The use of Fast Flux DNS by botnets is examined, demonstrating why the use of rapidly changing DNS information helps attackers by making it harder to track and disrupt botnets and malware.
The number of DDoS attacks in Q3 increased by 8% quarter over quarter, highlighted by a 13% increase in the average number of attacks per target (36).
Germany, despite not being among the top five source countries for DDoS attack traffic in the previous quarter, had the largest number of attack traffic source IPs in Q3 - 58,746 - 22% of the global total.
Egypt, last quarter's leader for DDoS attack traffic (44,198) fell out of the top 5 in Q3.
Australia suffered the third most web application attacks (19,115,151) despite not even registering in the top 10 in Q2.
With the holiday shopping season upon us, Akamai expects that both the monetary and emotional aspects of attack dynamics will strongly influence behavior in the fourth quarter. Criminals are likely to leverage the fact that the final quarter of the year is critical for merchants, making the merchants much more likely to pay an extortion letter threatening an attack on Black Friday or Cyber Monday than at many other times of year.
As noted in the Attack Spotlight, the code base from Mirai is still being used and is evolving, added McKeay. In addition, criminals are getting better at hiding their command and control structures, using techniques like Fast Flux DNS. It would not be surprising if, during this holiday season, we see new attacks such as those based on IoT devices or mobile platforms.
Through the SOTI/Security Report, as well as more in-depth research reports, Akamai brings you cutting-edge insight into the ever-changing landscape of attacks and attack tools - delivering information to help you and your team protect your organization.
A complimentary copy of the Q3 2017 State of the Internet / Security Report is available for download at akamai.com/stateoftheinternet-security. Download individual figures, including associated captions here.
Methodology The Akamai Third Quarter, 2017 State of the Internet / Security Report combines attack data from across Akamai's global infrastructure and represents the research of a diverse set of teams throughout the company. The report provides analysis of the current cloud security and threat landscape, as well as insight into attack trends using data gathered from the Akamai Intelligent Platform. The contributors to the State of the Internet / Security Report include security professionals from across Akamai, including the Security Intelligence Response Team (SIRT), the Threat Research Unit, Information Security, and the Custom Analytics group.
About Akamai As the world's largest and most trusted cloud delivery platform, Akamai makes it easier for its customers to provide the best and most secure digital experiences on any device, anytime, anywhere. Akamai's massively distributed platform is unparalleled in scale wi
Most recent headlines
05/01/2027
Worlds first 802.15.4ab-UWB chip verified by Calterah and Rohde & Schwarz to be ...
06/09/2026
June 9 2026, 23:00 (PDT) Dolby and MagentaTV Bring Fans Closer to the FIFA Worl...
04/08/2026
Dalet, a leading technology and service provider for media-rich organizations, t...
04/07/2026
April 7 2026, 19:00 (PDT) Detective Conan: Fallen Angel of the Highway Opens in...
03/07/2026
Share
Copy link
Facebook
X
Linkedin
Bluesky
Email...
03/07/2026
Share
Copy link
Facebook
X
Linkedin
Bluesky
Email...
03/07/2026
Share
Copy link
Facebook
X
Linkedin
Bluesky
Email...
03/07/2026
Death Star
Andy Marken July 2, 2026
0 Comments
Look, I can't get involved. I've got work to do. It's not that I like the Empire; I hate i...
03/07/2026
Berklee's New Visual Identity: Honoring Our History, Building for What's...
03/07/2026
Scripps Research scientists awarded $2M to advance global disease surveillance Two Gates Foundation grants will expand wastewater surveillance and AI-driven dis...
03/07/2026
Joan Pulupa joins Scripps Research faculty to study the organization of DNA in brain cells and its links to neurodegeneration Using smell-sensing neurons and ad...
02/07/2026
Entering her senior year, this hometown girl is paving a career in live sports production gaining experience in replay and audio and as a TD
In the live-sports...
02/07/2026
In-venue and creative video staffers at the professional and collegiate level ha...
02/07/2026
BLAST, a competitive entertainment company focused on esports, has announced more than $133 million in revenue for 2025, representing more than 40% year-over-ye...
02/07/2026
Riedel Communications has announced official SKAARHOJ panel support for SimplyLive production workflows, enabled through the SimplyLive 2.1 release. The integra...
02/07/2026
The Fire Rescue Service of the Czech Republic has deployed LiveU video-over-bond...
02/07/2026
Gravity Media USA has announced the appointment of Brittney Boston as Head of Business Development, effective July 1, 2026. Based in Nashville, Tennessee, Bosto...
02/07/2026
TwelveLabs, a video intelligence company, has announced $100 million in Series B funding co-led by NEA and NAVER Ventures, with participation from Amazon, Radic...
02/07/2026
The Pro Padel League (PPL) has announced a broadcast partnership with USA Sports that will air five PPL championship matches on CNBC during the 2026 season, the...
02/07/2026
LiveLike, a digital fan engagement platform, has announced eight confirmed FIFA ...
02/07/2026
Cobalt Digital has received Future's Best of Show Award, presented by AV Technology at InfoComm 2026, for its blueCORE family of standalone signal processor...
02/07/2026
Synamedia has announced the appointment of Dr. Tzvi Gerstl as Chief Executive Officer. Paul Segre, who has served as CEO for the past six years, will transition...
02/07/2026
The Esports Foundation (EF) and Sony Group Corporation have announced an expanded collaboration for the Esports World Cup 2026 (EWC), taking place in Paris, Fra...
02/07/2026
Zee Entertainment Enterprises Ltd. ( Z') has announced exclusive broadcast and digital rights for the Bundesliga in India for five years, beginning with the...
02/07/2026
NBCU brings together News, Sports, Local, and Telemundo for a 50+ camera live pr...
02/07/2026
Zoey Deutch, John Slattery, Ken Marino, Miles Gutierrez-Riley, and Ben Wang appe...
02/07/2026
Stammering, stuttering, strangulated tones
The Crow Hill Company's latest creation promises to be the most original sound set they've produced to d...
02/07/2026
A new era in unmixing and spectral editing
The latest version of Steinberg's spectral audio-editing software has just arrived, building on the strength...
02/07/2026
Aims to simplify additive synthesis
Sine Machine is the debut launch from Melatonin, a Vienna-based developer who have spent the past six years creating wha...
02/07/2026
Products to remain fully active & supported
Following the news of Native Instruments joining the inMusic brand line-up, Academy and Emmy Award-winning visua...
02/07/2026
What you missed!
Last weekend, Saturday 27 June 2026, saw the debut of Sound On Sounds new GearExpo UK event, the largest dedicated pro-audio event to take ...
02/07/2026
Share
Copy link
Facebook
X
Linkedin
Bluesky
Email...
02/07/2026
Following the successful launch of its inaugural APAC Mentoring Programme last month, the Rise AV APAC Regional Council will bring the conversation around mento...
02/07/2026
Blackmagic PYXIS 6K Used to Shoot Director Takahisa Zeze's Cry Out
Brie Clayton July 2, 2026
0 Comments
Highly mobile camera supports tense and de...
02/07/2026
Broadcast Solutions acquires BFE, expanding its lead in European broadcast, medi...
02/07/2026
Berklee Alum and Faculty Perform at Boston Public Library's 250th Anniversar...
02/07/2026
Broadcast Solutions GmbH, a leading systems integrator and provider of innovative solutions for the broadcast media industry, is acquiring BFE Studio und Medien...
02/07/2026
Cinegy GmbH, the premier provider of software-defined television technology, has extended the ingest facility at leading Brazilian sports company LiveMode, work...
02/07/2026
Share
Copy link
Facebook
X
Linkedin
Bluesky
Email...
02/07/2026
Standalone processors acknowledged for the innovation and value they bring to Pro AV
Cobalt Digital, a leading designer and manufacturer of signal processing ...
02/07/2026
Synamedia announced today the appointment of Dr Tzvi Gerstl as Chief Executive Officer. Paul Segre, who has served as CEO for the past six years, will transitio...
02/07/2026
Screen Australia backs audience-led filmmaking with new insight-driven initiativ...
02/07/2026
Screen Australia refines guidelines for Narrative Content Development and Docume...
02/07/2026
Maxon Autograph: Introduction to working with Tables
Simon Ubsdell July 1, 2026
0 Comments
An overview of Autograph's ridiculously powerful tables...
02/07/2026
Boston Conservatory's Soir e Breaks Records to Fund Student Scholarships The event achieved 127 percent of its fundraising goal in an evening celebrating ...
02/07/2026
How Adam Rosenwach Pivoted from Music to Med Tech Without Missing a Beat What do the rehearsal room and the boardroom have in common? More than you might thin...
02/07/2026
Warner Bros. Discovery UK & Ireland backs Unacceptable for a second series on TL...
02/07/2026
Thursday 2 July 2026
Tea with Judi Dench returns to Sky Arts with legendary guest, Sir Ian McKellen
Sky today confirms Tea with Judi Dench will return this su...
02/07/2026
Summer is heating up - and GeForce NOW is taking players along for the ride.
Start the month with Monopoly: Star Wars Heroes vs. Villains, bringing a galaxy fa...
01/07/2026
Broadcast Management Group (BMG) has announced the appointment of Kathy Samuels ...