Bulgaria
The DDoS threat landscape is constantly evolving, and to stay ahead of adversaries, ongoing monitoring and analysis are essential to detect how they are modifying their behavior and targets. NETSCOUT monitors the global threat landscape and drills into regional and country-level statistics to ensure that adversaries inform us of near-real-time trends. The country-level analytics featured on this page are automatically generated using our global threat analysis and collection platform, ATLAS, and provide a range of benchmarks for the specified time period, such as the top vectors used in DDoS attacks, top targeted industries, most vectors used in an attack, and total attack frequency.
Max Multivector Attack
Max number of vectors seen in a single attack
16
Attack Vectors Used
1. CLDAP Amplification
2. COAP Amplification
3. DNS
4. DNS Amplification
5. ICMP
6. MS SQL RS Amplification
7. NTP Amplification
8. SNMP Amplification
9. SSDP Amplification
10. TCP RST
11. TCP SYN
12. TCP SYN/ACK Amplification
13. UDP
14. WS-DD Amplification
Top Attack Vectors
Dn
DNS Amplification
Number of Attacks
3,378
Ts
TCP SYN
Number of Attacks
1,497
Cd
CLDAP Amplification
Number of Attacks
715
Ss
SSDP Amplification
Number of Attacks
711
Tr
TCP RST
Number of Attacks
534
Top Four Industries Under Attack
The following table lists the top vertical industries under attack from July 2025 to December 2025 by number of attacks.
| Rank | Vertical | Frequency | Average Duration |
|---|---|---|---|
| 1 |
Wireless Telecommunications Carriers (except Satellite)
|
7,212 | 26 Minutes |
| 2 |
Computing Infrastructure Providers Data Processing Web Hosting and Related Services
|
1,024 | 287 Minutes |
| 3 |
Wired Telecommunications Carriers
|
275 | 59 Minutes |
| 4 |
Full-Service Restaurants
|
69 | 81 Minutes |