As Northern African nations undergo rapid digital transformation, the growing connectivity presents both opportunities and vulnerabilities. Countries such as Egypt, Tunisia, Algeria, Libya, and Morocco are experiencing a rise in DDoS (Distributed Denial of Service) attacks, highlighting the region’s increasing cybersecurity challenges.
NETSCOUT’s 1H2024 DDoS Threat Intelligence Report (TIR) provides insights into the specific trends and challenges faced by these countries, shedding light on the common and unique cybersecurity issues affecting the region.
Morocco: The Region’s Most Targeted Nation
Morocco, with over 90 percent internet penetration in Africa, leads the region in DDoS incidents, with more than 61,000 attacks in the first half of 2024. The telecommunications sector, both wireless and wired, was the main target, with over 22,000 incidents. In contrast, other sectors, such as shoe retailers and medical services, saw significantly fewer attacks.
Egypt: Peak DDoS Attack Bandwidth
Egypt follows Morocco as the second-most targeted nation, with 45,108 DDoS attacks during the period. The country was subjected to some of the largest attacks in the region, with bandwidth peaking at 332.96 Gbps. The telecommunications sector was the primary target, accounting for more than 28,000 incidents, with educational institutions and data processing providers also affected.
Tunisia: Sophisticated Multi-Vector Attacks
Tunisia saw 4,511 DDoS attacks, with a focus on telecommunications carriers. The country experienced highly complex multi-vector attacks, with up to 27 different attack vectors used in a single incident. These attacks included techniques like ARMS, CLDAP, COAP, and DNS amplification, significantly increasing the power and impact of each assault.
Libya: Rising Threats Amid Digital Growth
In Libya, DDoS attacks grew in both number and sophistication as the country expands its digital infrastructure. The most common attack vectors were DNS amplification, ICMP, and STUN, with some attacks using up to 23 vectors. The country faces mounting cyber threats as its connectivity increases.
Algeria: Targeting Critical Infrastructure
Algeria recorded the fewest DDoS incidents, with only 452 attacks. However, the country’s critical wired telecommunications infrastructure was the primary target, with most attacks using DNS amplification techniques. These findings emphasize Algeria’s need for enhanced cybersecurity measures to protect its vital communication systems.
Securing Northern Africa’s Digital Future
Bryan Hamman, NETSCOUT’s regional director for Africa, remarked, “The rise in DDoS attacks across Northern Africa underscores the broader cyber risks associated with rapid digital expansion. As countries like Egypt, Tunisia, Algeria, Libya, and Morocco grow their online presence, they must implement robust cybersecurity frameworks to protect critical infrastructure and ensure resilience.”