Source URL: https://it.slashdot.org/story/25/09/24/2010227/record-breaking-ddos-attack-peaks-at-22-tbps-and-10-bpps?utm_source=rss1.0mainlinkanon&utm_medium=feed
Source: Slashdot
Title: Record-Breaking DDoS Attack Peaks At 22 Tbps and 10 Bpps
Feedly Summary:
AI Summary and Description: Yes
Summary: Cloudflare successfully mitigated a record-breaking DDoS attack against a European network infrastructure company, reaching peaks of 22.2 Tbps. The attack, attributed to the Aisuru botnet, demonstrates the increasing sophistication of cyber threats, particularly those leveraging compromised IoT devices. This highlights the need for robust defensive measures in network infrastructure security.
Detailed Description:
Cloudflare’s recent intervention against an unprecedented DDoS (Distributed Denial of Service) attack underscores critical challenges and developments in the realm of infrastructure and cloud security. Here are the major points:
– **Attack Description**:
– Peaked at **22.2 Tbps and 10.6 Bpps**, making it the largest DDoS attack recorded.
– Lasted only **40 seconds** but was sufficient to disrupt services aimed at a single IP address.
– Linked to the **Aisuru botnet**, which has previously been involved in significant attacks.
– **Botnet Details**:
– Aisuru is powered by **hacked IoT devices**, including routers and DVRs. These devices are compromised through **known and zero-day vulnerabilities**.
– The botnet has a history of carrying out massive attacks, including a **6.3 Tbps** assault on cybersecurity blogger Brian Krebs earlier in the year.
– **Attack Characteristics**:
– The attack aimed at more than **31,000 destination ports per second**, with a peak of **47,000 ports**, all targeting a single IP address.
– Originated from **over 404,000 unique source IPs** distributed across **14 ASNs** globally, indicating a highly coordinated effort.
– **Strategic Insights**:
– Cloudflare’s response emphasizes the necessity for resilience in network architecture against volumetric attacks.
– The notable increase in DDoS attacks, as highlighted by Cloudflare’s report of numbers in the first half of 2025 exceeding those in 2024, suggests a trend that security professionals must prepare for.
The incident serves as a stark reminder of the vulnerabilities present in today’s infrastructure and the continuous evolution of cyber threats. For professionals in security and compliance, implementing robust countermeasures against such DDoS attacks, including monitoring for anomalous traffic patterns and bolstering defenses around IoT devices, must be a priority to protect against these emerging threats.