Our website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

Radware Releases Q3 DDoS and Application Attack Report

by Wanda Rich
0 comment
attack SBI 300188017
  • Blocked DDoS events up 75% in the first nine months of 2021 compared to 2020 Blocked web application security events doubled every quarter in 2021 
  • Web application security violations align with the OWASP Foundation’s new 2021 top 10 list • 
  • Industries witnessing the most DDoS attacks: technology, healthcare, communications   

MAHWAH, N.J. Oct. 28, 2021—Radware® (NASDAQ: RDWR), a leading provider of cyber security  and application delivery solutions, has published results from its Q3 DDoS and Application Attack  Report. The report provides an overview of the DDoS attack landscape, application attack developments, and unsolicited network scanning trends. The data for the report analyzes network  and application attack activity sourced from Radware’s cloud and managed services, and Radware’s  Global Deception Network. 

“More DDoS attacks were blocked during the first nine months of 2021 than all of 2020,” said  Pascal Geenens, director of threat intelligence for Radware. “During the third quarter, DDoS  records for large volumetric attacks were broken across three continents. At the same time, phantom floods, or micro attacks that typically fly below the radar, increased. The reality is  organizations need more granular detection and multi-layer defenses to protect against stealthier  and more complex DDoS attacks.” 

DDoS Attacks Rise 

Yearly trends: 

The number of malicious events blocked by Radware’s DDoS mitigation solution was up 75% during the first nine months of 2021 compared to the same period in 2020. And the total volume blocked  in the first nine months of 2021 was 44% higher than the same period in 2020. 

Quarterly trends:  

Although the total number of events per company for the third quarter was slightly below previous  quarters in 2021, the number stayed above the highest quarterly level recorded in 2020. 

Industry trends:  

The most attacked industry in the third quarter was technology, with an average of 2,638 attacks  per company, followed by healthcare (1,785 attacks per company), communications (1,525 attacks  per company), and finance (1,337 attacks per company). 

Web Application Attacks Double 

Yearly trends:  

Web application attacks based on known vulnerabilities and techniques are ramping up quickly. The number of blocked web security events per company doubled every quarter for the first three quarters of 2021. 


Quarterly trends: 

The third quarter of 2021 accounted for 2.1 million blocked security events per company per  quarter, or an average of 700,000 blocked security events per month per company. 

Predictable resource location attacks, the most important security violation in the third quarter,  was witnessed twice as often as SQL injection, the second-most violation, followed by code  injection attacks and cross-site scripting attacks. The top two violations reported in the third  quarter are aligned with the top web application security concerns as reported in the OWASP  Foundation’s recently published 2021 top 10 list. 

Industry trends:  

In the third quarter of 2021, the most attacked industry was banking and finance, which accounted  for almost 23% of blocked web security events, followed by government (16%), technology (15%), and retail and wholesale trading (12%). 

Unsolicited Network Scanning and Attack Activity Surges 

Quarterly trends: 

Third quarter unsolicited scanning activity as recorded by Radware’s Global Deception Network  peaked at 27 million events per day, representing the second highest level during 2021. 

According to Geenens, “Network scanning and attack activity was marked by opportunistic and  random scanning that constitutes a large part of the vulnerability and exploit threat landscape. Malicious actors continuously leverage old and freshly disclosed vulnerabilities such as remote  

command execution and command injection exploits that are easy to integrate into existing  malware and exploit tools. Along with the evolution in cloud resources and services, there is no  more hiding on the internet. Every deep corner of the internet gets inventoried in convenient IoT  search engines.” 

Radware’s complete Q3 DDoS and Application Attack Report can be downloaded here.  

About Radware 

Radware®(NASDAQ: RDWR) is a global leader of cyber security and application delivery solutions  for physical, cloud, and software defined data centers. Its award-winning solutions portfolio secures  the digital experience by providing infrastructure, application, and corporate IT protection, and  availability services to enterprises globally. Radware’s solutions empower enterprise and carrier  customers worldwide to adapt to market challenges quickly, maintain business continuity, and  achieve maximum productivity while keeping costs down. For more information, please visit the Radware website.