January 15, 2026
Vercara DDoS Analysis Report – December 2025
December 2025 saw DDoS attacks more than double, with 23 mega attacks, a 1.25 Tbps peak, rising carpet bombing tactics, and sustained pressure on IT services.
Richard Wallace
Cyber Threat Intelligence Analyst
Richard is a Cyber Threat Intelligence Analyst at Vercara, leveraging over 23 years of military leadership and expertise in intelligence and data analytics. Driven by a mission to education and inform individuals on the current cyber threat landscape and how those threats could impact organizations. As an army veteran, Richard is a recipient of the Legion of Merit and multiple Bronze Star Medals.
Articles by Richard Wallace
January 15, 2026
Vercara WAF Analysis Report – December 2025
UltraWAF saw 1.87T requests in Dec 2025 as malicious traffic fell sharply, while XML/SOAP probing surged and attackers continued broad framework and API testing.
January 13, 2026
DigiCert’s Open-Source Intelligence (OSINT) Report – January 2 – January 8, 2026
Botnets, phishing, and critical flaws surge as Kimwolf and RondoDoX spread malware, Google Cloud is abused, Lapsus$ resurfaces, and email spoofing risks grow.
December 11, 2025
Vercara WAF Analysis Report – November 2025
UltraWAF analyzed 1.82T requests in Nov 2025, with malicious traffic down but bot activity surging, and rising command injection, cookie threats, and framework exploits.
December 9, 2025
Vercara DDoS Analysis Report – November 2025
November 2025 saw fewer DDoS attacks but far higher intensity, with mega-attacks surging, peaks over 709 Gbps, rising PPS rates, and increasingly complex vectors.
December 5, 2025
DigiCert’s Open-Source Intelligence (OSINT) Report – November 21 – November 27, 2025
AI-driven malware, EtherHiding attacks, rising holiday ransomware, nation-state alliances, ShadowV2 botnet activity, and 18,000 malicious domains fuel global threats.
November 13, 2025
Vercara WAF Analysis Report – October 2025
UltraWAF processed 1.86T requests in Oct 2025, with 31.6% malicious. Malformed XML attacks surged, and probes, payload obfuscation, and automated scanning continued to evolve.
November 11, 2025
Vercara DDoS Analysis Report – October 2025
DDoS attacks surged 14.69% in October 2025, with a 500% rise in mega attacks and a 165% jump in carpet-bombing tactics, signaling stronger botnet capabilities.
November 5, 2025
DigiCert’s Open-Source Intelligence (OSINT) Report – October 24 – October 30, 2025
Global cyber threats surge: massive DDoS attacks, WordPress exploits, Vault flaws, Atroposia malware, and phishing campaigns drive rising IoT and server risks.
October 13, 2025
Vercara WAF Analysis Report – September 2025
UltraWAF saw 984B requests in Sept 2025, with malicious traffic surging to 73%. Attackers shifted to protocol probes and advanced exploit payloads.
October 13, 2025
Vercara DDoS Analysis Report – September 2025
September 2025 saw DDoS attacks drop 70%, yet adversaries shifted tactics. Education emerged as the top targeted sector, underscoring evolving threats.
October 7, 2025
DigiCert’s Open-Source Intelligence (OSINT) Report – September 26 – October 2, 2025
Cybersecurity roundup: new malware campaigns, phishing surges, DNS-based threats, and APT activity targeting Europe, governments, and enterprise networks.