United States of America
The DDoS threat landscape is constantly evolving, and to stay ahead of adversaries, ongoing monitoring and analysis are essential to detect how they are modifying their behavior and targets. NETSCOUT monitors the global threat landscape and drills into regional and country-level statistics to ensure that adversaries inform us of near-real-time trends. The country-level analytics featured on this page are automatically generated using our global threat analysis and collection platform, ATLAS, and provide a range of benchmarks for the specified time period, such as the top vectors used in DDoS attacks, top targeted industries, largest attack by bandwidth and throughput, most vectors used in an attack, and total attack frequency.
Max Multivector Attack
Max number of vectors seen in a single attack
38
Attack Vectors Used
1. ARMS Amplification
2. BACnet Amplification
3. Bittorrent Amplification
4. CLDAP Amplification
5. COAP Amplification
6. Citrix-ICA Amplification
7. DHCP Discovery Amplification
8. DNS
9. DNS Amplification
10. ICMP
11. IPMI Amplification
12. ISAKMP
13. Jenkins Amplification
14. L2TP Amplification
15. MS SQL RS Amplification
16. Memcached Amplification
17. NTP Amplification
18. NetBIOS Amplification
19. OpenVPN Amplification
20. QOTD Amplification
21. RDP Amplification
22. RIPv1 Amplification
23. SIP Amplification
24. SNMP Amplification
25. SSDP Amplification
26. STUN Amplification
27. TCP ACK
28. TCP RST
29. TCP SYN
30. TCP SYN/ACK Amplification
31. TFTP Amplification
32. UDP
33. Ubiquiti Amplification
34. VSE Amplification
35. WS-DD Amplification
36. chargen Amplification
37. mDNS Amplification
38. rpcbind Amplification
Top Attack Vectors
Ta
TCP ACK
Number of Attacks
283,264
Ts
TCP SYN
Number of Attacks
214,840
Dn
DNS Amp
Number of Attacks
214,727
Tr
TCP RST
Number of Attacks
179,786
Im
ICMP
Number of Attacks
165,283
Top Ten Vertical Industries Under Attack
The following industry chart shows the most targeted sectors in 1H 2023 by number of attacks.
| Rank | Vertical | Frequency | Max Attack | Max Impact | Average Duration |
|---|---|---|---|---|---|
| 1 |
 Wired Telecommunications Carriers
|
331,864 | 890.68 Gbps | 286.8 Mpps | 44 Minutes |
| 2 |
 Data Processing Hosting and Related Services
|
197,971 | 733.29 Gbps | 165.32 Mpps | 45 Minutes |
| 3 |
 Wireless Telecommunications Carriers (except Satellite)
|
78,717 | 268.12 Gbps | 24.97 Mpps | 54 Minutes |
| 4 |
 Electronic Computer Manufacturing
|
45,240 | 117.11 Gbps | 119.59 Mpps | 36 Minutes |
| 5 |
 Internet Publishing and Broadcasting and Web Search Portals
|
32,893 | 712.17 Gbps | 201.02 Mpps | 194 Minutes |
| 6 |
 Hobby Toy and Game Stores
|
18,429 | 162.5 Gbps | 133.28 Mpps | 173 Minutes |
| 7 |
 National Security
|
12,032 | 27.17 Gbps | 6.93 Mpps | 27 Minutes |
| 8 |
 Electronic Shopping and Mail-Order Houses
|
9,670 | 134.87 Gbps | 495.09 Mpps | 97 Minutes |
| 9 |
 Full-Service Restaurants
|
6,329 | 26.4 Gbps | 2.2 Mpps | 20 Minutes |
| 10 |
 All Other Telecommunications
|
4,865 | 77.06 Gbps | 82.62 Mpps | 15 Minutes |