Security News > 2022 > April > Cloudflare stomps huge DDoS attack on crypto platform

At 15.3 million requests-per-second, the DDoS bombardment was one of the largest that the internet infrastructure company has seen, and the largest HTTPS attack on record.

Other countries generating the most traffic included Russia, Brazil, India, Colombia and the US. Cloudflare researchers didn't name the botnet but said it was one that they've been watching and had seen attacks as large as 10 million rps that matched the same fingerprint.

The use of a volumetric HTTPS DDoS attack rather than a more typical bandwidth strike was unusual.

"HTTPS DDoS attacks are more expensive in terms of required computational resources because of the higher cost of establishing a secure TLS encrypted connection," the Cloudflare threat-hunters wrote.

Cloudflare beat back the DDoS attack through a software-based system that automatically detects and mitigates such attacks across the network without human intervention.

The report's authors added: "We now measure IoT botnet and amplifier attack capacity exceeding 10 Tbps - a significant 3-4x increase from the size of any publicly reported DDoS attacks to date. We further observe aggregate daily DDoS attack volumes peaking over 3Tbps during the study period."

News URL

https://go.theregister.com/feed/www.theregister.com/2022/04/28/cloudflare-largest-ddos-attack-/