Web DDoS attacks see major surge as AI allows more powerful attacks


  • Layer 7 Web DDoS attacks are spiking, Radware report claims
  • EMEA bore the brunt of Web DDoS attacks
  • Financial institutions and transportation services suffered an almost 400% increase in DDoS attack volume

There was a noticeable increase in Web Distributed Denial of Service (DDoS) attacks in 2024, largely thanks to Artificial Intelligence (AI) lowering the barrier to entry, experts have claimed.

A report from cybersecurity experts Radware found Layer 7 Web DDoS attacks skyrocketed by 550% in 2024 compared to the previous year.

Layer 7 DDoS attacks are also known as application-layer DDoS attacks, and they target the application layer of the OSI model. Instead of overwhelming network bandwidth like traditional volumetric attacks, these attacks focus on exhausting server resources by mimicking legitimate user requests. They exploit vulnerabilities in web applications, APIs, and services by flooding them with HTTP requests, login attempts, or database queries, making it difficult to distinguish real users from malicious traffic.

More powerful, more disruptive

Radware says that the increase can be attributed to hacktivist groups leveraging AI-enhanced tools to mount more destructive attacks, easier.

“Multiple catalysts drove the threat revolution witnessed in 2024, including geopolitical conflicts, bigger and more complex threat surfaces, and more sophisticated and persistent threats,” said Pascal Geenens, director of threat intelligence at Radware.

“Add to that the impact of AI, which is lowering barriers to entry, multiplying the number of adversaries and enabling even novice actors to successfully launch malicious campaigns, and what you have is a threat landscape that looks very daunting.”

The EMEA region bore the brunt of Web DDoS attacks, the report states, claiming that it accounted for 78% of global incidents. For web application and API attacks, North America was the primary target with 66% of such incidents.

At the same time, financial institutions and transportation services suffered an almost 400% increase in DDoS attack volume, making them among the hardest-hit industries. Hacktivist-driven attacks also grew by 20% globally, with government institutions emerging as the top targets.

Beyond Web DDoS incidents, network-layer DDoS attacks have become more powerful and persistent, Radware explained. The average mitigated attack volume rose by 120% in 2024, while the average duration of attacks increased by 37%. The telecommunications sector absorbed the heaviest impact, facing 43% of global network DDoS attack volume, followed closely by finance at 30%. The financial sector was also the most targeted industry for Layer 7 DNS attacks, accounting for 44% of global activity.

“The escalations in the threat landscape have significant implications for every sector from finance and telecommunications to government and e-commerce and beyond,” Geenens added.

“Organizations are operating in a dynamic environment that demands equally dynamic defense strategies. While bad actors don’t have to do their jobs perfectly to have a major impact, defenders do.”

You might also like

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Read more
An image of network security icons for a network encircling a digital blue earth.
Standing strong against hyper-volumetric DDoS attacks
ransomware avast
“Every organization is vulnerable” - ransomware dominates security threats in 2024, so how can your business stay safe?
Ransomware attack on a computer
Ransomware attacks surged in 2024 as hackers looked to strike faster than ever
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Sounding the alarm on AI-powered cybersecurity threats in 2025
A padlock resting on a keyboard.
AI-powered cyber threats demand enhanced security awareness for SMEs and supply chains
Representational image of a hacker
The 10 worst software disasters of 2024: cyberattacks, malicious AI, and silent threats
Latest in Security
Close up of a person touching an email icon.
Criminals are using CSS to get around filters and track email usage
DeepSeek on a mobile phone
More US government departments ban controversial AI model DeepSeek
Ransomware
Fortinet firewall bugs are being targeted by LockBit ransomware hackers
Trojan
Microsoft warns of a devious new RAT malware which can avoid detection with apparent ease
NordProtect logo
Standalone identity theft protection from Nord Security is now available
A man holds a smartphone iPhone screen showing various social media apps including YouTube, TikTok, Facebook, Threads, Instagram and X
Ofcom cracks down on UK tech firms, will issue sanctions for illegal content
Latest in News
Lego Pokemon
Pokemon and Lego announce the most electrifying collaboration of all time and I’m going to be first in line
Apple Watch app health
Apple Watch blood pressure monitoring tech revealed in patent
Using Zipped files and folders in Windows 11
Hidden clues suggest Microsoft is moving another part of Windows 11’s Control Panel to the Settings app – and this time it’s mouse options
Core Time 2 and COre 2 Duo watches running Pebble OS
Pebble is back! Pebble founder announces two new smartwatches, and they're basically the opposite of an Apple Watch in every way
an image of the Samsung Galaxy S24 Ultra
Finally! One UI 7 has a release date - here are the Samsung phones that’ll get it first
Google Cloud logo
Google to acquire cloud security platform Wiz in $32 billion deal