Skip to main content
  1. Home
  2. Computing
  3. News

Cloudflare reports a massive 175% increase in DDoS attacks

Add as a preferred source on Google

Cloudflare, a web infrastructure and security company, has just released a report titled “DDoS Attack Trends for Q4 2021.” According to Cloudflare, 2021 has been a particularly bad year in terms of DDoS attacks.

Ransom distributed denial of service (DDoS) attacks increased by over 175 percent quarter over quarter, highlighting the large scale of the problem described by Cloudflare.

DDoS report by Cloudflare.
Image source: Cloudflare Image used with permission by copyright holder

In its quarterly report, Cloudflare details the attacks that took place over the last part of 2021 and provides a summary of what happened during the first half of the year. It seems that 2021 was a bad year all around when it comes to DDoS campaigns.

Recommended Videos

The first half of the year saw massive ransomware attacks that affected parts of critical infrastructure all around the world, as well as a vulnerability in IT management software. This vulnerability targeted the public sector, credit unions, schools, and other essential services.

Things didn’t improve as the year went on. Cloudflare saw the rise of a new botnet called Meris during the second half of 2021. It appeared in mid-2021 and bombarded organizations all around the world with some of the biggest HTTP attacks ever recorded. This includes a 17.2 million requests-per-second (rps) attack that Cloudflare automatically intercepted.

The two last quarters of 2021 saw also the appearance of one of the most severe vulnerabilities ever recorded on the internet. The Log4j2 vulnerability was discovered in December and proved to be very dangerous — it allows an attacker to execute code on a remote server without requiring physical access.

In the latter portion of the report, Cloudflare talks about the rising trend of DDoS attacks that are demonstrative of how much cyber insecurity has increased in 2021. The numbers certainly prove a point: In the fourth quarter of 2021, ransom DDoS attacks increased by 29% year over year and 175% quarter over quarter. Just in the month of December, one out of every three survey respondents reported that they were the target of a ransom DDoS attack or were threatened by the attacker.

DDoS report by Cloudflare.
Image source: Cloudflare Image used with permission by copyright holder

Cloudflare also noted an increase in application-layer DDoS attacks, where the manufacturing industry was hit the hardest during the last quarter of the year. Cloudflare reported a tremendous increase in the number of attacks of 641% quarter over quarter. Aside from the manufacturing sector, the attacks were mostly centered around business services, gaming, and gambling industries.

When it comes to network-layer DDoS campaigns, the latter portion of 2021 was, again, the busiest, with December being the worst month. The combined attacks observed in the first and second quarters of 2021 were still less than the ones that took place in December alone. November saw the rise of ransom campaigns made against voice over internet protocol (VoIP) providers.

Cloudflare states that the majority of the attacks were small, but they grew in strength as the year went on, resulting in dozens of attacks over 1Tbps that were mitigated by Cloudflare, one of which peaked at just under 2Tbps. The majority of the attacks originated from China, although the fourth quarter saw a rise in attacks from Moldova. Campaigns from that country quadrupled quarter over quarter.

As cybersecurity continues to be a target of attacks, it’s more important than ever for businesses and individuals alike to stay safe and fortify their systems. Cloudflare stated that it aims to make it easy and free for organizations of all sizes to stay protected against all kinds of DDoS attacks.

Monica J. White
Monica is a computing writer at Digital Trends, focusing on PC hardware. Since joining the team in 2021, Monica has written…
Opera’s new Paste Protect feature stops the clipboard attack your antivirus can’t catch
ClickFix attacks trick you into compromising your own device, and no major browser had a native defense against them until now.
Opera Paste Protect featured

Most online scams are easy enough to spot once you know what to look for. Fake login pages, suspicious attachments, or urgent wire transfer requests are dead giveaways. But ClickFix doesn't look like any of them. It presents itself as a solution, and it asks you to do something so routine that few people think twice about it.

The technique was behind more than 53 percent of malware loader incidents last year, according to cybersecurity firm Huntress, and no major browser had a native defense against it until now. Opera is fixing that with a new feature called Paste Protect.

Read more
Apple’s M6 chip isn’t even here yet, but you’ll see M7 Macs early in 2027
Apple is reportedly already accelerating its next-generation silicon roadmap, even before the M6 has launched.
Apple MacBook

The M6 chip is still expected to debut later this year, but Apple may already be preparing for what comes next. According to Mark Gurman's latest report for Bloomberg, the company is aiming to introduce its first M7-powered devices as early as the first half of 2027, hinting at a much faster silicon refresh than many expected.

M7 could arrive alongside new Macs and iPads

Read more
The entry-level MacBook Pro could get a design refresh in 2027, and it’s about time
Five years on the same chassis, and now both tiers of the MacBook Pro are getting a new look at once.
MacBook Pro in space grey sitting on a desk.

Apple has a new MacBook Pro lined up for launch early next year, according to Bloomberg. The company will introduce a 14-inch laptop in the first half of 2027. 

The biggest surprise, however, will be a brand-new design language. The outlet describes it as "a revamped entry-level MacBook Pro, code-named K104."

Read more