DDoS Attacks Surge in Complexity and Duration, Targeting Tech and Finance
Cybersecurity experts are warning of a shift in digital threats, as multi-vector DDoS attacks become more prevalent and complex. The first half of 2025 saw a significant increase in these attacks, with a record-breaking peak of 2.2 Tbps.
The duration of attacks is also changing. While incidents shorter than 10 minutes have decreased, those lasting between 10 and 30 minutes have nearly quadrupled. This trend suggests attackers are favouring longer, more damaging assaults.
Industry-wise, gaming's share of total DDoS attacks has dropped. Tech and financial services, however, have become prime targets. In the first half of 2025, companies with complex IT infrastructures, such as software providers and businesses with multiple partners, faced larger and more sophisticated attacks. This is due to their expanded attack surfaces and vulnerability as the weakest link in the supply chain.
The total number of DDoS attacks climbed from 969,000 in H2 2024 to 1.17 million in H1 2025. Attacks at the application layer have also increased by 10% in Q1-Q2 2025 compared to Q3-Q4 2024. Additionally, hosting providers are being targeted due to their role supporting various client sectors, potentially causing widespread disruption.
DDoS attack volumes have surged by 41% in Q1-Q2 2025 compared to the same period last year. As attacks become longer and more harmful, organisations must enhance their defences and preparedness to mitigate potential damage and downtime.
Read also:
- China's Foothold in Europe
- Advancement in Biometric Acceptance Paves Way for Challenges in Countering AI-Driven Digital Fraud
- Unidentified cybercriminals suspected in mobile banking fraud in Kenya, as insiders potentially implicated in the scheme
- Exploring the Architecture and Skills of Qualys' Agentic AI: A Deep Dive into Its Technological Framework and Abilities
