Largest DDoS Cloudflare attack on global sectors mitigated

According to recent media reports, Cloudflare has successfully announced the containment of a record-breaking Distributed Denial of Service (DDoS) attack. The DDoS Cloudflare attackThe speed peaked at 3.8 terabits per second (Tbps) and lasted about 65 seconds. In this article, we’ll go into the details of the attack and determine how it was successfully mitigated. Let’s get started!

The DDoS Cloudflare attack Revealed

Before we get into the details DDoS Cloudflare attackIt is worth mentioning that the web infrastructure and security company has experienced hypervolumetric L3/4 DDoS attacks since early September 2024. This malicious activities have not been attributed to any threat actor and the main targets include customers from various sectors such as:

• Internet.
• Financial Services.
• Telecommunications.

Cloudflare has commented on these attacks specified that it has mitigated:

“Over a hundred hypervolumetric L3/4 DDoS attacks last month, many exceeding 2 billion packets per second (Bpps) and 3 terabits per second (Tbps).”

Before the greatest of all time DDoS Cloudflare attackthe most serious attack was identified in November 2021. The attack peaked at 3.47 Tbps and targeted an unnamed Microsoft Azure customer in Asia. The DDoS Cloudflare attack The series likely comes from a large botnet that includes compromised ASUS home routers.

The web security and infrastructure company has also mentioned that these routers are exploited through a vulnerability labeled CVE-2024-3080. It’s worth noting that the flaw has a Critical Vulnerability Severity Score (CVSS) of 9.8.

DDoS attack on Arsenal and final target

According to recent reports, the DDoS Cloudflare attack uses the UDP protocol (User Datagram Protocol) on a fixed port. A majority of the packages involved in the attack came from several countries, including:

• Brazil.
• Spain.
• Russia.
• Vietnam.
• The USA

In addition, the compromised devices used to launch the attack mainly include MikroTik devices, DVRs and web servers. Reports have quoted Cloudflare explaining the end goal of the attacks. According to the company, the DDoS Cloudflare attack The series aims to exhaust a target network’s bandwidth and CPU cycles, thereby preventing access to legitimate users.

Insights into attack defense

Understanding the lessons learned DDoS Cloudflare attack Damage control is essential for those interested in it Development of a security strategy to ensure protection. When it comes to mitigating high packet rate attacks, it is important to inspect and discard bad packets.

CPU cycles should be kept to a minimum so that good packets can be processed. Cloudflare provided further insight into containment efforts, stating:

“Many cloud services with insufficient capacity as well as the use of on-premise devices are not enough to mitigate DDoS attacks of this magnitude, as the high bandwidth usage can clog internet connections and due to the high packet rate can crash inline devices. “

Diploma

Cloudflare’s successful defense of a record-breaking DDoS attack highlights the escalating threats facing global sectors such as internet, finance and telecommunications. Leveraging lessons learned from this incident is critical to improving cybersecurity strategies against evolving threats that target bandwidth and CPU resources globally.

Use beyond robust cybersecurity measures This is also necessary because it can help reduce risk exposure and improve the security situation.

Sources for this piece include articles in The Hacker News And The Cloudflare Blog.

The post Largest DDoS Cloudflare Attack Mitigated to Global Sectors appeared first on TuxCare.

*** This is a syndicated blog from TuxCare’s Security Bloggers Network, written by Wajahat Raja. Read the original post at: