Slashdot: KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS

May 21, 2025

—

Source URL: https://tech.slashdot.org/story/25/05/20/2215258/krebsonsecurity-hit-with-near-record-63-tbps-ddos?utm_source=rss1.0mainlinkanon&utm_medium=feed
Source: Slashdot
Title: KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS

Feedly Summary:

AI Summary and Description: Yes

Summary: The text discusses a massive DDoS attack attributed to the Aisuru IoT botnet, marking it as a significant event in the realm of cybersecurity. It highlights how this attack was likely a demonstration of the botnet’s capabilities rather than an attempt to cause disruption, reflecting ongoing trends in cybercrime involving the sale of DDoS services.

Detailed Description:
The incident described involves a near-record 6.3 Tbps DDoS attack against KrebsOnSecurity, attributed to an emerging IoT botnet named Aisuru. Here are the major points outlined in the text:

– **Attack Details**:
– The DDoS attack lasted less than a minute, resulting in a staggering rate of 585 million packets per second.
– Such attacks are designed to overwhelm network links, potentially crippling companies that do not have robust protections in place.

– **Mitigation and Impact**:
– The attack was mitigated successfully by Google, leading to no visible disruptions on the targeted website.
– The attack duration was approximately 45 seconds, indicating that the aggressors aimed to showcase their botnet’s capabilities rather than causing lasting harm.

– **Botnet Comparison**:
– The Aisuru IoT botnet is compared to the Mirai botnet, which was notorious after its emergence in 2016.
– The text implies that the Aisuru/Airashi botnet is part of a new trend of DDoS-for-hire operations, demonstrating a shift in the cybersecurity landscape that exploits IoT vulnerabilities.

– **DDoS-for-Hire Operation**:
– The operation is attributed to a 21-year-old Brazilian hacker, known as “Forky.”
– The attack’s nature suggests it may be a trial run to attract customers for DDoS-as-a-Service offerings, highlighting ethical and security implications in the digital landscape.

Overall, the text underscores increasing threats from sophisticated botnets that exploit Internet of Things devices, raising important considerations for security and compliance professionals in enhancing defensive measures against such attacks. The implications of this incident extend to infrastructure security strategies, necessitating a proactive approach in mitigating risks associated with emerging IoT cyber threats.

01 1 2 3 4 5 a Act after AI air Aisuru and app ARM art as attack attacks attribute Bi botnet botnets Brazil by C capabilities CI CIA co companies compliance compliance professionals core crime Customer cyber cyber threat cyber threats cybercrime cybersecurit Cybersecurity cybersecurity landscape D DDoS DDoS attack de defensive measures demo design device digital digital landscape disruption DoS DoS attack DoT e emerging end ethical event exp exploit exploits for full g Gen git Go Google gs H hack hacker harm Helm high Highlight hire HR http HTTPS implications in incident infrastructure infrastructure security inter intern internet Internet of Things IoT ite J k l land led Li Link lm M mass measures Mir Mirai Mirai botnet mitigating risks mitigation N network NGO no non o of off on operation operations ory oS oS attack oS services out over Paris phi point potential proactive professionals protection R raising rate RCE real record red Risk risks Ro RoT s sec security security and compliance security implications security landscape security strategies service services shift side Sig SoC source SSE SSO strategies T Tails targeted tech text the threat threats to Tor TP trends trial two under up US use V vulnerabilities web website Wi x