#Germany #Cybersecurity #Frankfurt am Main #Link11 #DDoS Attacks

Link11's European Cyber Report 2026: DDoS Attacks Become an Ongoing Challenge

On March 2, 2026, Link11 released its comprehensive European Cyber Report 2026, highlighting alarming trends in Distributed Denial-of-Service (DDoS) attacks that show no signs of abating. The report confirms that these attacks reached unprecedented levels in 2025, categorizing them as a persistent source of stress for digital infrastructures across the continent.

Significant Increases in Attack Frequency

The data reveals that documented DDoS incidents within Link11's network surged by 75% from the previous year, marking a stark increase following a prior year’s growth of 137%. Such spikes establish DDoS attacks as a recurring issue for both companies and critical infrastructure in Europe.

With a staggering 12,388 minutes recorded for the longest attack—equating to more than eight consecutive days—the frequency and duration of these assaults have placed businesses in a state of relentless alert. Shockingly, 88% of the time in 2025 saw active DDoS attacks, implying that threats became a near-constant reality for many organizations.

Volume and Scale of Attacks

The report indicates unprecedented attack volumes, with three separate incidents exceeding 1 terabit per second (Tbit/s) in 2025. The most powerful assault reached 1.33 Tbit/s, generating over 120 million packets per second. The overall data trafficked during a coordinated series of attacks amounted to 509 terabytes, comparable to the daily internet usage of a medium-sized city.

According to Jens-Philipp Jung, CEO of Link11, the traditional view of DDoS attacks as sporadic disruptions is outdated. He emphasizes, "We're witnessing a paradigm shift; these attacks are now a structural challenge affecting digital business models."

The Evolving Nature of DDoS Tactics

The report highlights the changing dynamics of DDoS attacks. Gone are the days when attackers primarily executed quick, disruptive assaults. Today's strategies reflect a hybrid approach combining volume, duration, and precision. Notably, there's a 70% probability that any initial attack will be followed by at least one additional attempt, with an average increase of 2.8 follow-ups post-initial incidents.

Modern attackers are employing tactics that involve extensive bandwidth and persistent, gradual degradation of services. As Jung notes, "Attack size is critical, but endurance and adaptability are what make these assaults exceptionally hazardous."

Strategic Implications for Cyber Resilience

These findings underscore that DDoS attacks extend beyond technical issues; they jeopardize revenue, reputation, and compliance with service-level agreements (SLAs). Protecting digital services demands a multi-faceted approach:

• - Always-on DDoS protection,
• - Web Application and API Protection (WAAP) to shield critical digital touchpoints,
• - AI-driven detection and response mechanisms,
• - Integration of DDoS strategies into corporate continuity and crisis management plans.

As Jung states, "Digital availability is now a competitive element; an organization's ability to endure cyber threats defines its operational integrity."

About Link11

Link11 is a European leader in IT security solutions, focusing on safeguarding global infrastructures from cyber threats. Their cloud-based security offerings assist organizations in boosting their cyber resilience and minimizing disruptions caused by malicious activities. With certifications from BSI for DDoS protection and other security standards, Link11 represents the forefront of security excellence against cyber challenges. For organizations aiming to stay resilient in the face of evolving digital threats, adherence to stringent security protocols is no longer optional but paramount.