India, China and the US had been the highest DDoS assaults targets in Q1 2025, with APAC dealing with over half of worldwide assaults, in line with new knowledge from cybersecurity agency StormWall.
A brand new report from cybersecurity agency StormWall reveals that just about half of all DDoS assaults within the first quarter of 2025 had been aimed toward China, India and the US. As an alternative of focusing closely on the same old targets, attackers are actually directing extra of their efforts towards infrastructure within the Asia-Pacific area.
In keeping with StormWall’s analytics middle, India topped the chart with 18.1% of the worldwide DDoS visitors, adopted by China at 16.2% and the US at 14.7%. Japan (12.3%) and Taiwan (10.2%) rounded out the highest 5. Relating to industry-wise assaults, Telecommunications turned the highest goal in APAC, with 136% year-over-year (YOY) progress.
4 of the 5 most focused nations now sit within the APAC area, with 57% of all malicious requests targeted there. This reveals that attackers are shifting their focus away from the same old targets in Europe and North America, no less than for now. The explanations could also be geopolitical, financial, or a mix of each.
“You may all the time depend on US targets attracting a variety of consideration,” mentioned Ramil Khantimirov, founding father of StormWall. It’s the world’s largest GDP and hackers are all the time going to focus on that, however we’ve by no means seen a lot exercise in APAC and so densely concentrated.”
In keeping with StormWall’s report shared with Hackread.com forward of publishing on Thursday, the principle pressure behind these assaults is botnets. These networks of contaminated gadgets had been answerable for almost 70% of all DDoS visitors tracked by StormWall within the first quarter of 2025.
Botnets, typically run by state-sponsored teams, hacktivists, or organized cyber criminals, permit attackers to direct large visitors at focused methods. One such botnet recognized within the report, named “Eleven11bot,” used a community of 86,000 compromised IP cameras and DVRs. It was regularly utilized in politically motivated campaigns.
Whereas APAC confronted a rise in DDoS assaults, different areas haven’t been spared. Belgium, although a lot smaller, skilled vital assaults, with 9.7% of worldwide DDoS exercise aimed toward its nationwide digital infrastructure, together with MyGov.be and the Walloon Parliament. Saudi Arabia was additionally hit exhausting, at 6.8%, largely as a result of pro-Palestinian assaults linked to ongoing regional tensions.
Nations like Italy, Russia, and Switzerland appeared additional down the record with decrease assault volumes, however consultants warning that even minor will increase in exercise can pose severe threats to unprepared networks.
StormWall’s knowledge paints an image of a fast-evolving menace surroundings, pushed by automation, political motives, and shifting strategic pursuits. Whereas botnet-powered campaigns develop in scale, the necessity for mitigation companies is extra vital than ever.
Nonetheless, separate analysis from NordPass reveals that many industries nonetheless fall brief on primary cybersecurity. Typically, weak and simply guessed passwords like 123456 and passwords@, are nonetheless in use, making methods weak to breaches and turning gadgets into a part of bigger botnets.
