Skip to main content

Research Reveals Hacker Tactics: Cybercriminals Use DDoS as Smokescreen for Other Attacks on Businesses

November 22, 2016

Kaspersky Lab today released a findings from the 2016 Kaspersky Lab Corporate IT Security Risks survey, which found that Distributed Denial of Service (DDoS) attacks are sometimes used by cybercriminals to distract businesses while hackers sneak in through the back door.

Woburn, MA – November 21, 2016Kaspersky Lab today released findings from the 2016 Kaspersky Lab Corporate IT Security Risks survey1, which found that Distributed Denial of Service (DDoS) attacks are sometimes used by cybercriminals to distract businesses while hackers sneak in through the back door.

Over half of businesses questioned (56 percent) are confident that DDoS has been used as a smokescreen for other kinds of cybercrime, and of those business respondents, a large majority (87 percent) reported that they had also been the victim of a targeted attack.

The survey showed that when businesses have suffered from cybercrime, DDoS has often been part of the attack tactics (29 percent). For example, a worrying one in four (26 percent) businesses that have suffered data loss as a result of a targeted attack, named DDoS as one of the contributing vectors.

Overall, more than half (56 percent) of business representatives surveyed believed that the DDoS attacks their companies had experienced were a smokescreen or decoy for other criminal activities. Why may DDoS attacks appeal to cybercriminals as part of their tactics?

“DDoS prevents a company from carrying on its normal activities by putting either public or internal services on hold,” said Kirill Ilganaev, head of DDoS protection, Kaspersky Lab. “This is obviously a real problem to businesses and it is often ‘all hands on deck’ in the IT team, to try and fix the problem quickly, so the business can carry on as before. DDoS can therefore be used not only as an easy way to stop the activity of a company, but also as a decoy to distract IT staff from another intrusion taking place through other channels.”

The survey also found that when DDoS attacks have been used by cybercriminals as a smokescreen, businesses also faced threats such as losses and exploits through mobile devices (81 percent), the actions of other organizations (78 percent), phishing scams (75 percent) and even the malicious activity of internal staff (75 percent).

“The research shows us that DDoS attacks are often aligned with other threats,” Ilganaev continued. “Businesses therefore need to be aware of the full threat landscape, and prepared to deal with multiple types of criminal activity at any time. Failure to do this could increase the collateral damage, on top of already significant losses caused by downtime and the resulting impact on reputation. Businesses need to use a reliable DDoS protection service to reduce the risk of DDoS and help staff concentrate their efforts on protecting the business from any threats that can be hidden as a result."

About Kaspersky Lab

Kaspersky Lab is a global cybersecurity company founded in 1997. Kaspersky Lab’s deep threat intelligence and security expertise is constantly transforming into security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky Lab technologies and we help 270,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com.

Securelist | Information about Viruses, Hackers and Spam
Follow @Securelist on Twitter

Threatpost | The First Stop for Security News
Follow @Threatpost on Twitter

Media Contact:
Denise Bertrand
781.503.1836
Denise.Bertrand@kaspersky.com

1Corporate IT Security Risks is the annual survey conducted by Kaspersky Lab in cooperation with B2B International. In 2016 we have asked more than 4000 representatives of small, medium and large businesses from 25 countries on their views on IT Security and real incidents they had to deal with.

Research Reveals Hacker Tactics: Cybercriminals Use DDoS as Smokescreen for Other Attacks on Businesses

Kaspersky Lab today released a findings from the 2016 Kaspersky Lab Corporate IT Security Risks survey, which found that Distributed Denial of Service (DDoS) attacks are sometimes used by cybercriminals to distract businesses while hackers sneak in through the back door.
Kaspersky logo

About Kaspersky

Kaspersky is a global cybersecurity and digital privacy company founded in 1997. With over a billion devices protected to date from emerging cyberthreats and targeted attacks, Kaspersky’s deep threat intelligence and security expertise is constantly transforming into innovative solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection, specialized security products and services, as well as Cyber Immune solutions to fight sophisticated and evolving digital threats. We help over 200,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com.

Related Articles Press Releases