Cloudflare Stops New World's Largest DDoS Attack Over Labor Day Weekend (zdnet.com)
- Reference: 0178996546
- News link: https://tech.slashdot.org/story/25/09/03/1958250/cloudflare-stops-new-worlds-largest-ddos-attack-over-labor-day-weekend
- Source link: https://www.zdnet.com/article/cloudflare-stops-new-worlds-largest-ddos-attack-over-labor-day-weekend/
> Over the Labor Day weekend, Cloudflare [1]says it [2]successfully stopped a record-breaking distributed denial-of-service (DDoS) attack that peaked at 11.5 terabits per second (Tbps). This came only a few months after Cloudflare [3]blocked a then all-time high DDoS attack of 7.3 Tbps. This latest attack was almost 60% larger.
>
> According to Cloudflare, the assault was the result of a [4]hyper-volumetric User Datagram Protocol (UDP) flood attack that lasted about 35 seconds. During that just more than half-minute attack, it delivered over 5.1 billion packets per second. This attack, Cloudflare reported, came from a combination of several IoT and cloud providers. Although compromised accounts on Google Cloud were a major source, the bulk of the attack originated from other sources.
>
> The specific target of this attack has not been publicly disclosed, but we can be sure the intent was to overwhelm the victim's network and render online services inoperative. Cloudflare says its globally distributed, fully autonomous DDoS mitigation network detected and neutralized the threat in real time, without notable impact on customer services or requiring manual intervention. This operation highlights both the rising sophistication of attack methods and the resilience of modern internet infrastructure defenses, especially Cloudflare's use of real-time packet analysis, fingerprinting, and rapid threat intelligence sharing across its network.
[1] https://x.com/Cloudflare/status/1962559687368593552
[2] https://www.zdnet.com/article/cloudflare-stops-new-worlds-largest-ddos-attack-over-labor-day-weekend/
[3] https://yro.slashdot.org/story/25/06/20/2010218/record-ddos-pummels-site-with-once-unimaginable-73tbps-of-junk-traffic
[4] https://www.akamai.com/glossary/what-is-a-volumetric-attack
You know what pisses me off ? (Score:2)
You know what pisses me off the most ?
It's not when they say "Nothing happened";
It's when they say "Something happened, but we're not telling you what !"
Internet infrastructure? (Score:2)
Cloudflare is not internet infrastructure ... it's the centralized, censorship prone band aid on the flaws of the internet infrastructure.
It didn't need to be this way, the internet could have been designed to not need DDOS protection.
Re: (Score:2)
> the internet could have been designed to not need DDOS protection
How?
I can close an entire street by ordering five hundred pizzas to the same address at the same time (assuming I can find five hundred pizzerias within the delivery area). How would we design a street to prevent this kind of DDoS attack?
Likewise, I fail to understand how the Internet could be designed in such a way that would be impossible to overwhelm any given target with a volume of traffic it can't handle.
Re: (Score:2)
Don't allow pizza deliverers to spoof their pizza place, allow the customer to put in a block at the pizza place for new deliveries.
[1]https://datatracker.ietf.org/d... [ietf.org]
[1] https://datatracker.ietf.org/doc/html/draft-eddy-sdnrg-customer-filters-01
Even though it failed (Score:2)
The college kids mounting it were pretty amused anyway. Everyone won
Know what would be cool? (Score:1)
If every ISP blocked spoofed UDP packets from exiting their network.
Re: Know what would be cool? (Score:1)
Why do you hate net neutrality?