Datacentres and Cloud services are easy victims and especially attractive security targets, according to network security and management vendor, Arbor Networks.
In its latest 8th annual Worldwide Infrastructure Security Report (WISR), which polled 130 network operators worldwide, 94 per cent of datacentre operators reported attacks.
Among those reporting datacentre attacks, 90 per cent mentioned that operational expenses were a major business impact.
Arbor Networks president, Colin Doherty, said as more companies move services to the Cloud, they should be wary of the shared risks and the potential for collateral damage.
“This correlates directly to the types of companies being targeted by attackers, with e-commerce and online gaming sites increasingly targeted,” he said.
Mobile operators continue to be reactive in terms of network visibility, and the trend of BYOD creates new security challenges, the study found.
About 60 per cent of respondents said they do not have visibility into the traffic on their mobile/evolved packet cores.
About 63 per cent of respondents allowed BYOD devices on the network, but only 40 per cent had the means to monitor those devices.
Additionally, only 13 per cent actively block access to social media applications and sites.
Doherty said there has been limited improvement in visibility or investment in detection and mitigation solutions specific to the mobile network since the last survey.
He added with the number of mobile devices, along with the sophistication and power of these devices on the rise, it is only a matter of time before threats become more prevalent within mobile infrastructure. And BYOD is creating more entry-points for hackers.
Other findings from the study include:
- Advanced Persistent Threats (APTs) is a top concern for service providers and enterprises – 61 per cent named ‘botted’ or otherwise compromised hosts as top concern, while 55 per cent named Advanced Persistent Threats (APTs) as top concern.
- The results confirm that application-layer and multi-vector attacks are continuing to evolve while volumetric attacks are starting to plateau in terms of size – the largest DDoS attack size was 60 Gbps and 46 per cent of respondents reported multi-vector attacks.
- DNS infrastructure remains vulnerable, as 27 per cent of respondents experienced customer-impacting DDoS attacks on their DNS infrastructure—a significant increase over the 12 per cent of respondents from last year’s survey.
- IPv6 deployments are becoming pervasive – 80 per cent of respondents indicated they either have already deployed IPv6 or have plans to deploy within the next 12 months, opening new opportunities for attackers to bypass network controls by switching between IPv4 and IPv6 networks.