Neustar Research Shows DDoS Attacks Can Cost Organisations On Average More Than $2.5 Million in Revenue


Neustar Building 10Tbps Global Defence Network to Combat Growing Problem

Neustar has released the findings from its fourth annual Worldwide DDoS Attacks and Cyber Insights Research Report. The report documents the frequency and cost of attacks and what measures are being taken to counter these threats.

The Neustar May 2017 Worldwide DDoS Attacks and Cyber Insights Research Report, a 52-page global report, analyses the responses of more than one thousand CISOs, CSO, CTOs security directors and managers. The report also includes, for the first time, Q1 attack data and trends captured from the Neustar DDoS Security Operations Center.

Highlights from Neustar’s May 2017 DDoS and Cyber Security Insights Report include:

DDoS Attack Trends

  • Volumetric attacks getting larger – Globally, 45 percent of DDoS attacks were more than 10 gigabits per second (Gbps); and, 15 percent of attacks were at least 50 Gbps, almost double the number reported last year.
  • Nowhere to hide – 849 out of 1,010 organisations surveyed globally were attacked with no particular industry spared, an increase of 15 percent since 2016. 727 – 85% of those attacked – were hit more than once.
  • Customers take on DDoS monitoring – 40 percent of respondents globally reported receiving attack alerts from customers, up from 29 percent in 2016.

Business Implication Trends

  • It’s a game of risk – 33 percent of organisations in APAC reported average revenue loss of at least $250,000, with 49 percent taking at least three hours to detect and 42 percent taking at least three hours to respond.
  • It’s a race against crime – The instances of ransomware and malware reported in concert with DDoS attacks were reported by 49 percent of organisations in APAC. Globally, 51 percent of attacks involved some sort of loss or theft with a 38 percent increase year over year in customer data, financial and intellectual property thefts.
  • What’s in place is not enough – 99 percent of organisations globally have some sort of DDoS protection in place, yet 90 percent of organisations are investing more than a year ago and 36 percent think they should be investing even more.

“With organisations across Asia Pacific being attacked more often and DDoS attacks predicted to become even larger and more complex, IT and business leaders need to evaluate the effectiveness of existing security strategies,” said Robin Schmitt, General Manager, APAC at Neustar. “The research shows that simply identifying an attack and depending on basic defences is not enough. Organizations in the region need to adopt stronger defenses and innovative solutions to more quickly and effectively mitigate the growing risk and likely impact of a major DDoS attack.”

Neustar and Harris Interactive conducted global, independent research of 1,010 directors, managers, CISOs, CSOs, CTOs, and other c-suite executives to find out how DDoS attacks affect their organizations and what measures are in place to counter these threats. The respondents span many industries, including technology, financial services, retail, healthcare and energy. Nearly half of the organisations reported annual revenues from $500M to $1B per year.

Although Q4 is generally considered “DDoS season”, the Neustar Q1 attack data captured from the Neustar DDoS Security Operations Center highlights a number of key indicators that foreshadow this year will be another challenging one from a DDoS threat landscape perspective.

  • The year is off to a fast start – Q1 is generally considered “pre-season,” but Neustar is already seeing significant increases in average attack size and variety of attack vectors.
  • Emergence of new attack vectors – Attackers are constantly seeking new ways to turn legitimate infrastructure elements against their owners. Generic Routing Encapsulation (GRE) based flood attacks and Connectionless Lightweight Directory Access Protocol (CLDAP) reflection attacks are emerging as the new hot attack trends for 2017.
  • Attacks continue to get more complex – Multi-vector attacks have become the nearly universal experience for Neustar mitigation operations, demonstrating that attackers continue to launch more sophisticated attacks to penetrate organizations defenses.

“The success of our business depends heavily on the optimal operation of our website and we simply can’t afford to go offline,” said Asif Ghafoor, CEO and Founder of Spacious. “At Spacious, we pride ourselves on having the best end-to-end user experience and with the threat of DDoS attacks or attacks on our DNS infrastructure on the rise, the right level of protection is the key priority. We are excited to have Neustar as a partner and to be protected by their leading DDoS protection and secure DNS services.”

Industry Leader Neustar Completes First Phase of Upgrade to 10 Tbps Global DDoS Mitigation Capacity

In conjunction with today’s release, Neustar announces it has tripled its global DDoS mitigation network capacity to 3 Tbps and will continue to significantly increase to 10 Tbps by early 2018. The construction, implementation and capacity of this new network is designed to stay ahead of the changing threat landscape and neutralize new and future volumetric DDoS attacks, as well as easily containing other types of DDoS attack vectors using proprietary DNS and IP intelligence data.

“The focus, dedication, innovation and expertise demonstrated by the team at Neustar is unparalleled when it comes to protecting our critical infrastructure,” said Fritz Seifts, VP of Core Infrastructure, MLB Advanced Media.  “We are excited to have Neustar as a Technology Partner and to be protected by their leading edge DDoS protection and secure DNS services.”

“Innovation is in our DNA at Neustar, and we are pushing the limits of what was already considered a standard. We’re going well beyond any of our competitors or visions I had 20 years ago,” said Lyon. “With the completion of our new global constellation of scrubbing centers, we will have the largest, most distributed, and technically advanced DDoS defense network on the planet.  We will not only be defending our large enterprise clients but also handling the overflow traffic many other providers will have during large attacks.”

Download Neustar’s Worldwide DDoS Attacks and Cyber Insights Research Report at

Learn more about Neustar SiteProtect.

About Neustar
Every day, the world generates roughly 2.5 quadrillion bits of data. Neustar (NYSE: NSR) isolates certain elements and analyzes, simplifies and edits them to make precise and valuable decisions that drive results. As one of the few companies capable of knowing with certainty who is on the other end of every interaction, we’re trusted by the world’s great brands to make critical decisions some 20 billion times a day. We help marketers send timely and relevant messages to the right people. Because we can authoritatively tell a client exactly who is calling or connecting with them, we make critical realtime responses possible. And the same comprehensive information that enables our clients to direct and manage orders also stops attackers. We know when someone isn’t who they claim to be, which helps stop fraud and denial of service before they’re a problem.  Because we’re also an experienced manager of some of the world’s most complex databases, we help clients control their online identity, registering and protecting their domain name, and routing traffic to the correct network address.  By linking the most essential information with the people who depend on it, we provide more than 11,000 clients worldwide with decisions—not just data.  More information is available at