Global survey finds attacks on DNS, network-layer denial-of-service attacks most frequent and toughest to stop

Dark Reading Staff, Dark Reading

November 4, 2011

1 Min Read

The typical cost of a cyberattack during the past year was $682,000, according to a newly published global survey of IT managers from 1,000 organizations.

The Applied Research survey, commissioned by F5 Networks, found that attacks against Domain Name System (DNS) infrastructure and network-layer denial-of-service (DoS) attacks overall are the most difficult to defend against and are the most frequent and painful to an organization. About half said their current security is "somewhat effective," while 32 percent said it's "completely effective."

The biggest cost to organizations from a breach was lost productivity, which 50 percent reported, followed by loss of data (43 percent), lost revenue (31 percent), loss of customer trust (30 percent), regulatory fines (24 percent), and theft of money or goods (19 percent).

"The loss of data [cost] was higher than I would have expected," says Alan Murphy, senior technical marketing manager for F5.

Nearly half said they somewhat or extremely frequently see attacks that access unencrypted data, followed by 43 percent experiencing the same with DNS attacks, security misconfigurations, and cross-site scripting. Around 42 percent experience network-layer distributed denial-of-service attacks and cross-site request forgery attacks somewhat or extremely frequently.

Firewalls mostly or completely handled these and other attacks around 70 to 74 percent of the time. More than 40 percent say a firewall failed due to a network-layer DoS attack, and just more than 35 percent had the same problem with an application-layer DoS attack.

Have a comment on this story? Please click "Add Your Comment" below. If you'd like to contact Dark Reading's editors directly, send us a message.

About the Author(s)

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights