The Real Costs of DDoS Attacks Against the Enterprise

The bottom line cost of a DDoS attack is as high as $2.3 million for the enterprise, based on the type of business or volume of transactions occurring on a website per day.


Cost of DDoS Attacks: In 2016, similar attacks cost $1.6 million for enterprises, based upon market research of more than 5,200 business professionals by Kaspersky and B2B International. The significant increase is worrying but to be expected the more we rely on our IT infrastructure to be always available.

Why They Cost So Much: One third of the organizations attributed the costs to fighting the attack and restoring services.

Kaspersky’s report further indicated that while the attacks were becoming more costly and frequent, companies’ security teams are not fully responsible for protection; most of the businesses rely on third-party protection via their internet service provider (ISP) or data center and infrastructure providers. 34 percent of organizations expect their ISP will protect them, and 26 percent expect their data center or infrastructure partners will protect them from DDoS attacks.

Not Me: Even though DDoS attacks are increasing in frequency, Kaspersky reported that 28 percent of those who have so far not been affected believe that it is highly unlikely they will be targeted by a DDoS attack.

From the cybercriminals’ perspective, DDoS attacks are very inexpensive. DDoS attacks begin at $5 per hour for a 300-second attack, with a 24-hour attack costing about $400. For DDoS attacks against organizations with higher levels of security, the prices are a bit more expensive.

The volume of attacks is growing because of the increasing availability of IoT devices to serve as DDoS attack engines. This has already been demonstrated in the field late last year and in 2018, it’s cheaper to rent or create a botnet of IoT devices than a botnet hosted on traditional servers.

Complexity of Attacks Increase: As DDoS defenses get more complex, so do the attacks. According to Kaspersky’s SecureList site, cybercriminals can purchase “stepped-up” attacks, which means that the DDoS attack might start with a DDoS SYN Flood and then transition to a UDP Flood or other combinations of multi-vector attacks.

Insurance, Not ROI: Paying for DDoS attacks after the fact is a very expensive proposition. Consider DDoS security defense infrastructure as you do traditional insurance (You should of course make sure your cyber insurance does have DDoS  coverage). While it may be hard to demonstrate ROI up front, the losses after the fact pile up rapidly.

Prevention is Better than Mitigation

Introducing RADAR™

RADAR™, MazeBolt’s new patented technology solution is part of the MazeBolt security platform. RADAR™, simulates DDoS attacks continuously and non-disruptively. Delivering advanced intelligence, through straightforward reports on how to remediate the DDoS vulnerabilities found.  With RADAR organizations achieve, maintain, and verify the continuous closing of their DDoS vulnerability gaps. Reducing and maintaining the vulnerability level of a damaging DDoS attack from an average of 48% to under 2% ongoing.

About MazeBolt

MazeBolt is an innovation leader in cybersecurity and part of the DDoS mitigation space. Offering full DDoS risk detection and elimination and working with any mitigation system to provide end to end full coverage. Supporting organizations in avoiding downtime and closing DDoS vulnerabilities before an attack happens.



Leave a Reply

Your email address will not be published. Required fields are marked *

Stay Updated.
Get our Newsletter*

Recent posts

Stay Updated - Get Our Newsletter

Stay Updated - Get Our Newsletter