DDoS attacks targeting e-commerce in Europe have quadrupled in the last eight months. According to her research Stormwall, between February and October 2020, the number of DDoS attacks targeting online retail services quadrupled compared to the corresponding period in 2019. The company said that the increase in the number of attacks was mainly due to increased competition between online courses retailers during the COVID-19 global health crisis, but also because of cybercriminals and extortionists businesses to make money.
Zach Varnell, senior AppSec consultant at nVisium, said that if businesses pay the required ransom, even at a small percentage of their frequency, the hackers who orchestrate DDoS attacks will be motivated to continue their action. Varnell added that financial services hit hard by DDoS attacks, stressing that as there are many more online retailers multiplying due to COVID-19, it is very likely that targeting this industry is now becoming a lucrative resource for hackers. He also pointed out that most consumers now make the markets them online and therefore very sensitive data customers are exposed.
According to Infosecurity Magazine, when asked if he believed the attackers were chasing online retailers for financial gain, Brandon Hoffman, CISO at Netenrich, said: "They follow 100% of the money. There has been a huge increase in online spending due to COVID-19 and a huge increase in furniture and home remodeling purchases. Many assume that because of COVID-19, people are unable to take vacations, so instead they spend this budget to improve their homes where they are actually stuck longer than normal. "In combination with the closure of physical stores worldwide, this explains the focus of the attack."
Stormwall also found that the number of attacks on online electronics stores had increased fivefold, the number of attacks on online furniture stores had increased eightfold, and the number of attacks on online renovation stores had increased sevenfold.
Ramil Khantimirov, CEO and co-founder of StormWall, noted that e-commerce has always been an attractive field for cybercriminals and during the pandemic, hackers' interest in this e-commerce industry grew even more. He added that criminals are actively promoting DDoS attack methods, and retailers are finding it increasingly difficult to defend themselves. The new trend is that attackers are trying to locate vulnerabilities which require a small number of requests per second to make a site unavailable. An effective defender system which can be protected by this type campaign must have smart protection DDoS, such as preventive analysis and self-learning.
Finally, it is worth noting that the number of DDoS attacks on protocol HTTP increased by 296% between February and September 2020, compared to the same period last year.