Web application attack activity While the number of web application attacks increased by 28% over the last quarter, the percentage of web application attacks sent over HTTP vs. HTTPS has remained relatively consistent for two quarters - 89% via HTTP in Q4 vs. 88% via HTTP in Q3.
The most frequently observed attack vectors for the quarter were LFI (41%), SQLi (28%) and PHPi (22%), followed by XSS (5%) and Shellshock (2%). RFI, MFU, CMDi, and JAVAi attacks comprised the remaining 2%. The relative distribution of the attack vectors over HTTP vs. HTTPS was similar, with the exception of PHPi; PHPi was seen in just 1% of the attacks over HTTPS.
Fifty-nine percent of the Q4 web application attacks targeted retailers, vs. 55% in Q3. The media & entertainment and hotel & travel industries were the next most frequently targeted, with 10% of the attacks each. This represents a change from Q3, when the financial services industry was the second most-targeted industry (15% of attacks), compared with just 7% of the attacks this quarter.
Continuing a trend from last quarter, the US was both the main source of web application attacks (56%) as well as the most frequent target (77%). Brazil was the next biggest attack source (6%) as well as the second most targeted country (7%), which seems to be related to the fact that a large cloud Infrastructure-as-a-Service (IaaS) provider opened new data centers there. Since the opening of the data centers, Akamai has seen a large increase in the amount of malicious traffic coming out of Brazil, and specifically from the aforementioned data centers. Most of those attacks were against a Brazilian customer in the retail industry.
For the Q4 report, we identified the top 10 sources of web application attack traffic by ASN, and analyzed the corresponding attack types, payloads and frequency. A description of 10 of the more interesting attacks - and their payloads, is included in Section 3.6.
Web application attack metrics
Compared with Q3 2015
28.10% increase in total web application attacks
28.65% increase in web application attacks over HTTP
24.05% increase in web application attacks over HTTPS
12.19% increase in SQLi attacks
Scanning and probing activity Malicious actors rely on scanners and probing to perform reconnaissance on their targets before launching attacks. Using firewall data from the perimeter of the Akamai Intelligent Platform, our analysis showed the most popular ports for reconnaissance were Telnet (24%), NetBIOS (5%), MS-DS (7%), SSH (6%), and SIP (4%). The top three sources of scanning activity were all located in Asia, as determined by ASN. We also saw active scanning for reflectors to abuse, including NTP, SNMP, and SSDP.
By looking at the top reflection sources by ASN, we saw that the most heavily-abused network reflectors were in China and other Asian countries. While most SSDP attacks tend to be from home connections, NTP, CHARGEN, and QOTD are generally from cloud hosting providers where those services run. SSDP and NTP reflectors were the most often abused reflectors at 41% each, followed by CHARGEN (6%) and RPC (5%). SENTINEL and QOTD followed at 4% each.
Download the report A complimentary copy of the Q4 2015 State of the Internet - Security Report is available for download at www.stateoftheinternet.com/security-report.
About stateoftheinternet.com Akamai's stateoftheinternet.com shares content and information intended to provide an informed view into online connectivity and cybersecurity trends as well as related metrics, including Internet connection speeds, broadband adoption, mobile usage, outages, and cyber-attacks and threats. Visitors to stateoftheinternet.com can find current and archived versions of Akamai's State of the Internet (Connectivity and Security) reports, the company's data visualizations and other resources designed to help put context around the ever changing Internet landscape.
About Akamai As the global leader in Content Delivery Network (CDN) services, Akamai makes the Internet fast, reliable and secure for its customers. The companys advanced web performance, mobile performance, cloud security and media delivery solutions are revolutionizing how businesses optimize consumer, enterprise and entertainment experiences for any device, anywhere. To learn how Akamai solutions and its team of Internet experts are helping businesses move faster forward, please visit www.akamai.com or blogs.akamai.com, and follow @Akamai on Twitter.
Most recent headlines
04/09/2025
Monumental Sports & Entertainment (MSE), in collaboration with Dalet, has been a...
01/05/2025
WASHINGTON The Corporation for Public Broadcasting has filed a lawsuit to stop the Trump administration from firing three of its board members, claiming the pre...
01/05/2025
HONG KONG Riedel Communications today said it has opened a new office in Hong Kong, enhancing its presence in the Asia-Pacific region....
01/05/2025
MUMBAI, India & BALTIMORE In a development that could advance efforts to bring NextGen TV to cellphones, FreeStream Technologies, Lava International and HMD hav...
01/05/2025
01 05 2025 - Media release Screen Australia empowers 100 distinctive Australian narratives
All The Boys Are Here writer/director Goran Stolevski and It s All...
01/05/2025
How PFX Delivered 750 VFX Shots in Just Four Months For Anthony Hopkins Thriller...
01/05/2025
Careline's New Wave Makeup Commercial Shot With URSA Cine 12K LF
Brie Clayton May 1, 2025
0 Comments
CAD Studios relies on large format, full fram...
30/04/2025
Film elements held at the Deluxe warehouse in March of 2015. Photo by Luis Silva...
30/04/2025
EA SPORTS FC 25 fans in Australia and Saudi Arabia, get ready to immerse yourselves in the beautiful game like never before. Spotify is excited to announce a n...
30/04/2025
The past year has been nothing short of a whirlwind for Tucker Wetmore. After th...
30/04/2025
Mexico's love for podcasts is no longer a trend-it's a lifestyle. With m...
30/04/2025
Slam poet Huda the Goddess wins 2025 Les Murray Award
30 April, 2025
Media releases
Australia for UNHCR and SBS are proud to announce that Huda Fadlelmawla...
30/04/2025
SBS, NITV and NIDA partner to empower the next generation of screen creatives
30 April, 2025
Media releases
SBS, National Indigenous Television (NITV) and ...
30/04/2025
By Joyce JC Cataldo
The media and entertainment industry is evolving faster than ever. Technology is shifting the way we create, distribute, and experience c...
30/04/2025
An image of Valencia, Spain, in the OneAtlas Living Library...
30/04/2025
NEWPORT BEACH, Calif. WPSD-TV, the NBC affiliate in Paducah, Ky., has selected Bitcentral's Central Control playout system to upgrade the station's mast...
30/04/2025
AMSTERDAM Zero Density, a global provider of virtual studio productions and on-air graphics, has appointed Baris Zavaroglu as its new CEO. Zavaroglu succeeds Of...
30/04/2025
The Avit Group, a forward-thinking audio-visual technology company, is bringing over 50 years of combined experience in delivering audio-visual design and insta...
30/04/2025
NXTGENbps will be showcasing its latest sustainable battery power solutions at this year's Media Production & Technology Show (MPTS), appearing alongside pa...
30/04/2025
Van Dyke skates and operates on Shoresy | photo by Dave Ferguson
Toronto-based Cinematographer Brett Van Dyke (Heartland, Jann, Carter) stepped into the rink...
30/04/2025
Leading provider of media playout solutions PlayBox Neo will exhibit a vast array of significant upgrades to its range of smart media innovations at CABSAT from...
30/04/2025
ITV Studios is renowned for its award-winning productions, including the reality TV phenomenon I'm a Celebrity Get Me Out of Here! Produced by Lifted Ente...
30/04/2025
The UK's presence at this year's CABSAT brings together 20 innovative companies under the GREAT Britain and Northern Ireland banner. From advanced infra...
30/04/2025
Lightware continues to strengthen its Environmental, Social, and Governance (ESG) initiatives by fostering diversity, inclusion, and community engagement within...
30/04/2025
LiveU is demonstrating for the first time in the UK, its revolutionary technological breakthrough in IP-video transport, LiveU IQ (LIQ ) and bringing its expand...
30/04/2025
Stand: A40
Calrec has been putting sound in the picture for more than six decades and is still pushing the boundaries of audio broadcasting with a full range o...
30/04/2025
Buckinghamshire New University (BNU) has opened its new virtual production studio, designed and integrated by CJP Broadcast. The installation equips students wi...
30/04/2025
Independent news producer in India focuses on delivering stories
nxtedition has supplied a complete newsroom system to Collective Newsroom, based in New Delhi,...
30/04/2025
Connecting the present, building the future
FOR-A, a cutting-edge video broadcast technology company backed by more than 50 years experience, will showcase it...
30/04/2025
DAD by NTP Technology reports a successful NAB Show in Las Vegas where the company focused on upcoming expansion options in development for its Thunder | Core a...
30/04/2025
CVP and Canon UK & Ireland are proud to announce the winning projects from the third annual Stories in Motion Young Filmmakers Awards, which took place on the e...
30/04/2025
Leading video software provider, Synamedia, today announced that beIN MEDIA GROUP ( beIN'), one of the foremost global sports and entertainment broadcasters...
30/04/2025
The Canadian Premier League (CPL) today launched a new-look website and app, offering supporters of Canada's men's domestic professional soccer league a...
30/04/2025
WASHINGTON In a wide-ranging press conference, Federal Communications Commission Chair Brendan Carr had both good and bad news for broadcasters, stressing that ...
30/04/2025
TORONTO Cignal TV is relying on Quickplay's Shorts tool for its recently launched Pilipinas Live Shorts service, available to millions of users of Pilipinas...
30/04/2025
NEW YORK Steve Lanzano will retire as president and CEO of the Television Bureau of Advertising at year-end, the group said....
30/04/2025
The news production tech provider nxtedition is reporting that it supplied a complete newsroom system to Collective Newsroom, an independent news producer based...
30/04/2025
NEW YORK As part of a major push to advance the role that artificial intelligence (AI) plays in the advertising industry, the Interactive Advertising Bureau has...
30/04/2025
Uzbekistan Airways is the latest airline to choose SES's network, while Thai...
30/04/2025
Loaded Uses Blackmagic Design for shroud Subathon Live Streams
Brie Clayton April 29, 2025
0 Comments
Blackmagic Studio Cameras and Micro Studio Camer...
30/04/2025
Help shape the future of video creator tools with MIDiA
Brie Clayton April 29, 2025
0 Comments
After a successful debut in 2024, MIDiA is calling once...
30/04/2025
Tania Le n and Kelli O'Hara to be Honored at Boston Conservatory at Berklee&...
30/04/2025
Andr 3000 and Sara Bareilles to Receive Honorary Doctorates at Berklee College ...
30/04/2025
Damien Molony will head back to Jersey for a second series of Bergerac, written by Toby Whithouse alongside Ashley Sanders, Emilie Robson and Faebian Averies
D...
30/04/2025
Advancing multi-domain EW operations: Rohde & Schwarz unveils latest innovations...
30/04/2025
Rohde & Schwarz pioneers the future of automotive Ethernet using Analog Devices&...
30/04/2025
Wuppertal April 30, 2025
Riedel Communications Expands Asia-Pacific Presence with New Office in Hong KongRiedel Communications, a global leader in real-time v...
30/04/2025
Back to All News
Mad Unicorn' Trailer Reveals a Riveting Rags-to-Riches Sa...
30/04/2025
Back to All News
Get Ready to Get Wild: Netflix Announces Mating Season, a New ...
30/04/2025
SAN JOSE, Calif. - April 30, 2025 - Harmonic (NASDAQ: HLIT) today announced that...
Web application attack activity While the number of web application attacks increased by 28% over the last quarter, the percentage of web application attacks sent over HTTP vs. HTTPS has remained relatively consistent for two quarters - 89% via HTTP in Q4 vs. 88% via HTTP in Q3. 
