Sony Pixel Power calrec Sony

Q3 2017 Akamai State of the Internet / Security Report Reveals Significant Increase in Web Application Security Attacks, Evolution of Attacker Strategies

01/12/2017

Q3 2017 Akamai State of the Internet / Security Report Reveals Significant Increase in Web Application Security Attacks, Evolution of Attacker Strategies Holiday shopping season may see new attack types leveraging IoT devices, mobile platforms

Cambridge, MA | November 28, 2017

Newly released data shows that web application attacks continued to rise significantly in both the quarter-over-quarter and year-over-year timeframes, according to the Third Quarter, 2017 State of the Internet / Security Report released by Akamai Technologies, Inc. (NASDAQ: AKAM). In addition, further evaluation of the Mirai botnet and WireX malware attacks suggests that attackers may leverage IoT and Android devices to build future botnet armies.

The report found that the number of web application attacks last quarter (Q3 2017) increased 69% in total from the same timeframe last year (Q3 2016). In the last quarter alone, web application attacks rose 30% as compared to the second quarter of 2017. Over the last year, a 217% increase in attacks sourcing from the U.S. was seen, with an increase of 48% in the last quarter as compared to the prior one.

SQL injection (SQLi) attacks continued to be heavily utilized by attackers as a part of the significant rise of web application attacks. This attack vector increased 62% since last year, and 19% since last quarter. The significant increase in web application attacks, particularly injection attacks like SQLi, should come as no surprise as the latest version of the OWASP Top 10 2017 that came out last week has injection (inclusive of SQLi) as the top ranked vulnerability category. This new iteration is the first major update to the OWASP Top 10 since 2013, when injection also resided in the top spot.

Perhaps more alarming was the result of taking a closer look at the Mirai botnet and encountering the introduction of WireX malware. While smaller than its predecessor, the Mirai malware strain, which uses Internet of Things (IoT) devices, was responsible for the largest attack seen in Q3 at 109 Gbps. The ongoing Mirai activity, coupled with the introduction of WireX, which commandeers Android devices, highlights the vast potential that exists for new sources of botnet armies.

The lure of easy access to poorly-secured end nodes and easily-available source code make it likely that Mirai-based attacks won't be fading in the near future, said Martin McKeay, senior security advocate and senior editor, State of the Internet / Security Report. Our experience suggests that an army of new potential attackers comes online every day. Couple with that, the ubiquity of Android software and the growth in the Internet of Things are amplifying the risk/reward challenges that enterprises face to tremendous levels.

By the Numbers: Other highlights from Akamai's Third Quarter, 2017 State of the Internet / Security Report include:

The use of Fast Flux DNS by botnets is examined, demonstrating why the use of rapidly changing DNS information helps attackers by making it harder to track and disrupt botnets and malware.

The number of DDoS attacks in Q3 increased by 8% quarter over quarter, highlighted by a 13% increase in the average number of attacks per target (36).

Germany, despite not being among the top five source countries for DDoS attack traffic in the previous quarter, had the largest number of attack traffic source IPs in Q3 - 58,746 - 22% of the global total.

Egypt, last quarter's leader for DDoS attack traffic (44,198) fell out of the top 5 in Q3.

Australia suffered the third most web application attacks (19,115,151) despite not even registering in the top 10 in Q2.

With the holiday shopping season upon us, Akamai expects that both the monetary and emotional aspects of attack dynamics will strongly influence behavior in the fourth quarter. Criminals are likely to leverage the fact that the final quarter of the year is critical for merchants, making the merchants much more likely to pay an extortion letter threatening an attack on Black Friday or Cyber Monday than at many other times of year.

As noted in the Attack Spotlight, the code base from Mirai is still being used and is evolving, added McKeay. In addition, criminals are getting better at hiding their command and control structures, using techniques like Fast Flux DNS. It would not be surprising if, during this holiday season, we see new attacks such as those based on IoT devices or mobile platforms.

Through the SOTI/Security Report, as well as more in-depth research reports, Akamai brings you cutting-edge insight into the ever-changing landscape of attacks and attack tools - delivering information to help you and your team protect your organization.

A complimentary copy of the Q3 2017 State of the Internet / Security Report is available for download at akamai.com/stateoftheinternet-security. Download individual figures, including associated captions here.

Methodology The Akamai Third Quarter, 2017 State of the Internet / Security Report combines attack data from across Akamai's global infrastructure and represents the research of a diverse set of teams throughout the company. The report provides analysis of the current cloud security and threat landscape, as well as insight into attack trends using data gathered from the Akamai Intelligent Platform. The contributors to the State of the Internet / Security Report include security professionals from across Akamai, including the Security Intelligence Response Team (SIRT), the Threat Research Unit, Information Security, and the Custom Analytics group.

About Akamai As the world's largest and most trusted cloud delivery platform, Akamai makes it easier for its customers to provide the best and most secure digital experiences on any device, anytime, anywhere. Akamai's massively distributed platform is unparalleled in scale wi
LINK: https://www.akamai.com/uk/en/about/news/press/2017-press/akamai-releas...
See more stories from akami

Most recent headlines

05/01/2027

Worlds first 802.15.4ab-UWB chip verified by Calterah and Rohde & Schwarz to be demoed at CES 2026

Worlds first 802.15.4ab-UWB chip verified by Calterah and Rohde & Schwarz to be ...

01/06/2026

Dolby Sets the New Standard for Premium Entertainment at CES 2026

January 6 2026, 05:30 (PST) Dolby Sets the New Standard for Premium Entertainment at CES 2026 Throughout the week, Dolby brings to life the latest innovatio...

02/05/2026

Dalet Flex LTS Delivers Smarter Search, Faster Editing, and an AI-Ready Foundation for Modern Media

Dalet, a leading technology and service provider for media-rich organizations, t...

01/05/2026

NBCUniversal's Peacock to Be First Streamer to Integrate Dolby's Full Suite of Premium Picture and Sound Innovations

January 5 2026, 18:30 (PST) NBCUniversal's Peacock to Be First Streamer to ...

01/04/2026

DOLBY AND DOUYIN EMPOWER THE NEXT GENERATON OF CREATORS WITH DOLBY VISION

January 4 2026, 18:00 (PST) DOLBY AND DOUYIN EMPOWER THE NEXT GENERATON OF CREATORS WITH DOLBY VISION Douyin Users Can Now Create And Share Videos With Stun...

13/03/2026

GFiber and Stonepeak's Astound Broadband to Merge

Share Copy link Facebook X Linkedin Bluesky Email...

13/03/2026

Harmonic Redefines the Economics of Video Playout with Ne...

Harmonic (NASDAQ: HLIT) today announced Spectrum X Plus, the newest generation of its Spectrum X media server, offering double the channel density of previous ...

13/03/2026

Historic Ewing Covenant Church Revitalizes Worship Experi...

When Ewing Covenant Church made the decision to return to its original, historic building, affectionately called 1867 Sanctuary for weekly worship, the congre...

13/03/2026

Marshall Electronics Launches CV574 WP its First 4K All I...

Marshall Electronics introduces its first all-IP 4K POV camera, the CV574-WP, at NAB 2026 (Booth C8339). The CV574-WP supports NDI |HX, providing ultra-efficien...

13/03/2026

Net Insight launches Nimbra 520 - Predictable Live Media...

At NAB Show 2026, Net Insight introduces Nimbra 520, a high-density media processing node designed to simplify live contribution and distribution across both ma...

13/03/2026

Abandon Editorial Signs With Michal Dimitri for West Coast Representation

Abandon Editorial Signs With Micha l Dimitri for West Coast Representation Brie Clayton March 12, 2026 0 Comments Abandon Editorial is excited to part...

13/03/2026

Documentary The Bulldogs Shot and Edited with Blackmagic Design

Documentary The Bulldogs Shot and Edited with Blackmagic Design Brie Clayton March 12, 2026 0 Comments Editorial tools helped shape film in real time,...

13/03/2026

AE Captions as Fast as CapCut - No Plugins

AE Captions as Fast as CapCut - No Plugins Graham Quince March 12, 2026 0 Comments Stop wasting hours clicking through nested compositions and manuall...

13/03/2026

New Music USA and Berklee Institute of Jazz and Gender Justice Announce 2026 Next Jazz Legacy Cohort

New Music USA and Berklee Institute of Jazz and Gender Justice Announce 2026 Nex...

12/03/2026

Milano Cortina 2026: Yospace helps ad-funded rights-holders claim advertising gold

Staines-upon-Thames, UK, 11th March, 2026 - Yospace, the trusted leader in Dyna...

12/03/2026

Utah Scientific Expands Technology Partner Program With Integrations From Audinate, Bitfocus, and Skaarhoj

Utah Scientific Expands Technology Partner Program With Integrations From Audina...

12/03/2026

Techex Hires Matt McKee as Senior Director, Sales, Americas

Techex, a global expert in live video solutions over IP and cloud, announces the appointment of Matt McKee as Senior Director, Sales, Americas, further strength...

12/03/2026

KOKUSAI DENKI Electric America Welcomes Mondae Hott as Regional Sales Manager, Northeast

KOKUSAI DENKI Electric America has appointed Mondae Hott as Regional Sales Manag...

12/03/2026

Interra Systems Focuses on Streaming-First QC, Monitoring, and Responsible AI Workflows at 2026 NAB Show

At the 2026 NAB Show, Interra Systems will showcase its latest advancements in a...

12/03/2026

15th National Games of China Features Expansive Unified Broadcast Network

The 15th National Games of China concluded after a two-week celebration of athletic excellence and regional collaboration. Held from Nov. 9-21 across Guangdong,...

12/03/2026

SVG in Indy: Butler University Students Get Live-Sports Experience via On-Campus Studio, Production Truck

Live-production academic program Butler Sports Live produced a total of 40 fall-...

12/03/2026

Lawo Delivers Fully IPBased Video Infrastructure for University of Nebraska's HuskerVision

The University of Nebraska's HuskerVision has completed the second phase of ...

12/03/2026

University of Illinois Upgrades Game-Day Production with New Hybrid IP Control Room

Grass Valley and integration partner Tab M Solutions have completed Phase 1 of a...

12/03/2026

CBS Sports Turns to University of Cincinnati's Control Room and Staff for Two Big 12 Men's Basketball Broadcasts

The broadcaster expands its campus-production model as the university handles tw...

12/03/2026

Disney+ to Stream Men's and Women's NCAA March Madness Across Europe, South Africa

Disney has announced the addition of March Madness - the NCAA Division I Men...

12/03/2026

Apple TV Further Integrating iPhones into Friday Night Baseball' Camera Lineup This Season

Apple TV's Friday Night Baseball MLB doubleheader series returns for its f...

12/03/2026

SVG Students To Watch: Jack Rinaldi, University of Notre Dame

The senior from New Jersey is making his mark in South Bend, both on the mic and behind it...

12/03/2026

Ross Video's Kevin Dresser on Powering Graphics for Major Sporting Events Throughout a Busy February

After a relatively quiet January, the month of February was jammed packed with l...

12/03/2026

X Games Launches New Era With First League Draft at Cosm L.A.

Long-time production partner Echo Entertainment is producing the broadcast, while Cosm played a vital role in the collaboration...

12/03/2026

Film Festival Watch: 24 Sundance Institute-Supported Films to Catch at the SXSW Film Festival

By Jessica Herndon We love kicking off each year by introducing the world to po...

12/03/2026

Didn't Die Brings Improv to the Zombie Apocalypse

Samrat Chakrabarti, George Basil, Kiran Deol, Katie McCuen and Vishal Vijayakumar attend the 2025 Sundance Film Festival premiere of Didn't Die at the Lib...

12/03/2026

Mon Laferte Leads All-Women Spotify Session as EQUAL Celebrations Kick Off in Latin America

In Latin America, women are shaping music and defining its future. To kick off t...

12/03/2026

Mon Laferte lidera la edicin EQUAL de Spotify Sessions, mientras comienzan las celebraciones de EQUAL en Latinoamrica

En Am rica Latina, las mujeres est n moldeando la m sica y definiendo su futuro....

12/03/2026

As Spotify Turns 20, the Most Global and Diverse Music Industry in History Has Taken Shape

Let's turn back the clock 20 years: The music landscape was a world away fro...

12/03/2026

Bad Bunny Brings the Sounds of Puerto Rico to Tokyo for Spotify's Billions Club Live

Bad Bunny is no stranger to Spotify's Billions Club. In fact, he has a whopp...

12/03/2026

At the London Book Fair, Spotify Shares Our Vision for the Future of Reading

Spotify was at the London Book Fair this week, joining conversations across the publishing industry about how people can make reading part of their daily lives....

12/03/2026

Ohlhorst Digital & Tokyo Dawn Labs launch Ancora

Mastering tool improves mono compatibility Tokyo Dawn Labs' Ohlhorst Digital range is a series of mastering-focused plug-ins developed by Jan Ohlhorst, ...

12/03/2026

Lewitt partner with Elgato

Wave FX processor integrated into four products Lewitt have teamed up with Elgato to create a new processor for the company's Wave Next product range, i...

12/03/2026

Mix Notes iOS App by David Thomas

Free tool for annotating audio files Mix Notes is a new, free iOS App that provides users with a simple way to annotate their audio files. It's been cre...

12/03/2026

Duck 2 from Devious Machines

Side-chain ducking tool gets an upgrade Devious Machines' popular side-chaining and envelope-shaping tool has just been kitted out with an improved enve...

12/03/2026

MPG Awards 2026: Shortlist announced

Ceremony to take place on 16 April 2026 The MPG (Music Producers Guild) have revealed the full shortlist for this year's MPG Awards, which will be takin...

12/03/2026

Overloud introduce Gem Comp160

Emulates three classic dbx 160 variants The latest arrival to Overloud's Gem Series plug-in range faithfully recreates not one, but three versions of th...

12/03/2026

Grainferno from Baby Audio

New granular soft synth announced Said to be their most advanced software synthesizer to date, Baby Audio's latest release has been built on a new granu...

12/03/2026

Bitwig Studio 6 launches

Latest version now live! Edit 11 March 2026 - Bitwig Studio 6 is now live, and available for all to download! The latest version of Bitwig's DAW softwa...

12/03/2026

Stereo Miking: The Sound On Sound Guide

Latest free eBook now available! Designed for recording engineers, audio-technology students and technically minded musicians, our latest free eBook deliver...

12/03/2026

AFL and NITV partner to launch new First Nations led program Inside the Huddle'

AFL and NITV partner to launch new First Nations led program Inside the Huddle&...

12/03/2026

Rohde & Schwarz Cybersecurity expands SITLine network encryptor portfolio - more bandwidth, higher port density, future-proof architecture

Rohde & Schwarz Cybersecurity expands SITLine network encryptor portfolio - more...

12/03/2026

Rohde & Schwarz to showcase future-proof EMC testing solutions at EMV 2026

Rohde & Schwarz to showcase future-proof EMC testing solutions at EMV 2026 Rohde & Schwarz will participate in EMV 2026, Europe's premier trade fair and c...

12/03/2026

19TH ANNUAL SOUTH AFRICAN FILM AND TELEVISION AWARDS (SAFTAs19) ANNOUNCES THE HOSTS FOR CRAFT AND MAIN SHOW

Johannesburg, 11 March 2026 - The 19th Annual South African Film and Television ...

12/03/2026

L3Harris and Shield AI Achieve Breakthrough in Autonomous Electronic Warfare

MELBOURNE, Fla., March 11, 2026 - L3Harris Technologies (NYSE: LHX) and Shield AI have successfully demonstrated a first-of-its-kind integration combining L3Har...