Skip to main content
close search
site logo
Dive Brief

Financial services sees sharp increase in DDoS attacks as geopolitical tensions rise

The industry became the most-targeted sector in 2023, driven by cyber hacktivist groups and more powerful botnets.

Published March 7, 2024
David Jones's headshot
Reporter
A close up of the Department of Treasury seal on the front of the headquarters with "the Department of Treasury" and "1789" on an outer circle and a shield with the scales of justice up top and a key.
The exterior of the U.S. Department of Treasury in Washington, D.C. on March 13, 2023. The agency's Electronic Federal Tax Payment System was one the systems a threat actor claimed to have targeted last summer. Chip Somodevilla via Getty Images

Dive Brief:

  • Distributed denial of service attacks against the financial services industry surged in 2023, making it the most frequently targeted sector, according to a report released Wednesday from FS-ISAC and Akamai

  • Attacks against the sector rose 154% year-over-year, driven largely by the rise of cyber hacktivist groups and increasingly powerful botnets. 

  • Financial services accounted for about 35% of all DDoS attacks, surpassing the gaming industry, which previously led all sectors.

Dive Insight:

DDoS attacks against the financial services sector historically accounted for about 10-15% of all attacks, however that trend began to rise in 2021, the FS-ISAC and Akamai found.

“Financial services companies are prime targets because successfully disrupting operations, for even just a moment, can lead to severe reputational risks and distrust in the global financial system,” Teresa Walsh, chief intelligence officer and managing director, EMEA, at FS-ISAC, said via email.

Akamai in September said it prevented a DDoS attack on a major U.S. financial institution. The attack peaked at 633.7 gigabits per second and 55 million packets per second. 

The increased activity was driven in large part by hacktivist groups using DDoS as a tool to disrupt institutions at a time of rising geopolitical tensions, beginning with the Russia-Ukraine war in February 2022 and later the Israel-Hamas war October, the report found.

These hacktivist groups often favor DDoS attacks due to the “conspicuous nature of the resulting impacts,” said Conor McLaren, principal adversary hunter at Dragos.

“Specifically, while these attacks are often unsophisticated, they can draw significant attention to geopolitical and social causes, which can have a cascading effect on the proliferation of fear and uncertainty," McLaren said via email.

U.S. authorities in July warned that threat groups were potentially targeting multiple sectors using DDoS capabilities, including one group which claimed to have targeted the Treasury Department’s Electronic Federal Tax Payment System. By October, security researchers warned a novel zero day vulnerability, known as HTTP/2 Rapid Reset, was being used to launch some of the most powerful DDoS attacks ever recorded. 

Filed Under: Threats

Editors' picks

Company Announcements

View all | Post a press release
Nile Adds Industry’s First Campus Zero Trust Delivered As a Service
From Nile
November 21, 2024
Fathom5’s ARIA Technology Joins NSIN Propel Maritime Digital Defense Accelerator
From Fathom5
November 18, 2024
TrustNet Named 2024’s Best Compliance Advisory and Audit Firm at CDM’s Annual Top InfoSec Inno…
From TrustNet
November 06, 2024
DigiCert Unveils 2025 Security Predictions
From DigiCert
November 21, 2024
Editors' picks
Latest in Threats
image/svg+xml
Industry Dive is an Informa business
© 2024 Industry Dive. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell