Cel mai mare atac DDoS din istorie: 5.6 Tbps – Escaladarea amenințărilor cibernetice în 2024

Pe 29 octombrie 2024, a fost înregistrat cel mai mare atac DDoS (Distributed Denial of Service) din istorie, atingând un volum impresionant de 5.6 Tbps. Lansat de o variantă a infamului botnet Mirai, atacul a vizat un furnizor de servicii Internet (ISP) din Asia de Est și a durat doar 80 de secunde. Acest incident marchează un nou prag în evoluția atacurilor cibernetice, subliniind complexitatea…

As you may have noticed already, Archive of Our Own is currently down, due to a DDOS attack by a group claiming to be “Anonymous Sudan”, which may or may not be a group affiliated with Russia using Anonymous to drive divides against Islamic People, and also target one of the largest sources of LGBT media online.

Something important to also note is that there are actually bills being passed through Congress (or at least on track) that are functionally identical in intention and rhetoric to this hacking attack called the Kids Online Safety Act. if it passes, it’ll censor/cripple the entire internet as we know it for the same political and religious motivations. AO3 will be negatively affected as well, either losing most of its LGBT content at best, or at worst being permanently shut down.

The big one at the moment is the Kids Online Safety Act, but there are also other bills like the EARN IT Act, the RESTRICT Act, and so forth. There’s more information provided in the Links below!

Bad Internet Bills (Website Created by Fight For the Future on Twitter) LinkTree for KOSA (made by volunteers, contains open letter for signing and more articles about the bill in question)

Please take the time to read up and call your Senators to stop this. If you can't do that, then email them and contact the people on this master list here. Especially call Maria Cantwell, since she’s hesitant about this bill!

Additionally, if you happen to have TikTok or some other social media presence, please help spread the word. These people linked below have done so and the more people talking about this, the better!

JuiceInABoxx OmarsBigSister

New 'HTTP/2 Rapid Reset' zero-day attack breaks DDoS records

Source: https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records/

More info: https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps/

Oh, this is wild. I had no idea the attacks were so huge. Like, someone came after AO3 with the big guns.

We later found out that the attack had actually peaked at 65 million requests per second. For context, the largest publicly announced HTTP DDoS attack by Cloudflare at the time was a 71 million request per second attack

1000000x kudos for the AO3 systems volunteers!

Our Systems volunteers have written up a great behind-the-scenes look at last year’s DDoS attacks against the Archive. Why not check it out and show them some love?

Cloudflare Blocks Largest-Ever DDoS Attack: 37.4 TB in Just 45 Seconds

This mega DDoS attack broke all records - huge 37.4TB bombardment in 45 seconds against a single victim is the largest ever recorded

Huge 38TB DDoS attack targeted a hosting provider Cloudflare’s DDoS protection kicked in and blocked the attack This was the largest DDoS attack ever recorded Distributed-denial-of-service (DDoS) attacks usually use a network of compromised devices to bombard a server with an unusually large amount of data in order to render a service unusable. But Cloudflare says it recently blocked a…

Largest DDoS Attack to Date

http://securitytc.com/TLW1T6

A bit on and off topic, but that's me...

Since he almost touches on my world I sometimes forget that a lot of people are unaware of Brian Krebs, a computer security journalist of some note, who does such a good investigative job that not only has his home been swatted but his website also once suffered the largest known DDoS in history. How? Unsecured IoT devices. That's right, picture frames and refrigerators were involuntarily conscripted into a war with a website.

Don't buy something that can connect to the internet because it's novel, and if you do, FFS change the default password to something memorable for you but not obvious to any attacker.

Welcome to the future, where you don’t own anything and the stuff you rent stops working once your phone has no signal.

Massive DDoS attack delivered 37.4TB in 45 seconds, equivalent to 10,000 HD movies, to one victim IP address — Cloudflare blocks largest cyber assault ever recorded | Tom's Hardware

Escalating DDoS Attacks: A Timeline of Record-Breaking Power • 2022 – 3.47 Tbps Targeting Microsoft In 2022, Microsoft was the target of a Distributed Denial of Service (DDoS) attack that peaked at 3.47 terabits per second. At the time, it was one of the largest ever recorded. The attack was likely motivated by attempts to disrupt cloud services and enterprise infrastructure, emphasizing the growing sophistication and scale of cybercriminal operations.

• April 2025 – 6.5 Tbps Just three years later, a new wave of DDoS attacks set the bar even higher. In April 2025, an attack reached a staggering 6.5 Tbps, nearly doubling the 2022 figure. This escalation demonstrated the increasing availability of powerful botnets and the growing threat posed by cyber-extortion tactics.

• June 2025 – 7.3 Tbps (New Record) The most recent and most powerful attack to date occurred in June 2025, peaking at 7.3 Tbps and transferring 37.4 terabytes of junk traffic in just 45 seconds. The attack was mitigated by Cloudflare, who identified the use of UDP reflection and amplification techniques, leveraging third-party servers to intensify the volume. This set a new global record, showing just how aggressive and industrialized the DDoS ecosystem has become.

Commentary This rapid growth in DDoS magnitude is not only a technical challenge but also a strategic threat to digital infrastructure. The fact that these attacks have more than doubled in volume within three years illustrates:

The low cost and high impact nature of modern cyberweapons.

The increasing use of DDoS-for-hire services, where attacks can be launched for a few hundred dollars.

The vulnerability of even the most resilient tech giants like Microsoft.

While large providers like Cloudflare or Azure have the means to absorb and mitigate such volumes, smaller businesses and public services remain highly exposed, often with no real defense. It’s a wake-up call for governments and the private sector alike to invest more seriously in cybersecurity resilience — especially in a world where data, uptime, and digital trust are core assets.

Record DDoS pummels site with once-unimaginable 7.3Tbps of junk traffic

Large-scale attacks designed to bring down Internet services by sending them more traffic than they can process keep getting bigger, with the largest one yet, measured at 7.3 terabits per second, being reported Friday by Internet security and performance provider Cloudflare. The 7.3Tbps attack amounted to 37.4 terabytes of junk traffic that hit the target in just 45 seconds. That’s an almost…

At this point in the cryptocurrency industry, Distributed Denial of Service (DDoS) attacks have gone from a worst-case scenario during ICOs and peak trading periods to almost a point of pride for exchanges. After all, anyone who’s anyone in cryptocurrency exchanges is getting smashed with DDoS attacks. Just look at Bitfinex, or Poloniex, two of the largest and most popular cryptocurrency market platforms in the world who were both hits recently by DDoS attacks and suffered massive losses.The truth of the matter is that the reputational damage a successful DDoS attack can inflict outweighs the warm fuzzy feeling any exchange owners might get from knowing they’re important enough to the market to get targeted. To that end, here are the three must-haves for DDoS mitigation for cryptocurrency exchanges.Smart Traffic InspectionOne of the things that makes inflicting a DDoS attack on a cryptocurrency exchange so easy for attackers is the huge bursts of natural traffic exchanges regularly experience. ICOs and favorable trading conditions attract traders in droves, and all an attacker needs to do is aim a blast of traffic at the already stressed exchange server and more often than not, a distributed denial-of-service attack succeeds. A DDoS mitigation service needs to boast granular traffic analysis as well as deep packet inspection in order to block the often craftily disguised DDoS traffic while ensuring traders and other legitimate visitors can access the exchange and their wallets without any delay. There’s no point blocking a DDoS attack if it’s going to block legitimate users as well. The Fastest Possible Response (guaranteed)For traders, a matter of seconds can be a matter of big money. Your exchange cannot lag, nor can it glitch for even a moment if you’re going to keep your users happy. This means a DDoS attack cannot succeed for even one second, which in turn means your DDoS mitigation service needs to be able to detect and react to attack traffic as quickly as is currently possible.Cryptocurrency exchanges need to accept nothing less than a time to the mitigation of 10 seconds or under, and this time to mitigation needs to be guaranteed right in the service level agreement. If you get 10 seconds or less guarantee, you can likely count on your mitigation to kick in within one or two seconds of the first trickling of attack traffic. If you can’t get fast time to mitigation in writing, you probably won’t get it when you need it.Robust Processing PowerWe’re conducting business in the age of the IoT botnet, which means we’re conducting business in the age of the unfathomably large DDoS attack. When researching DDoS mitigation providers for a cryptocurrency exchange, be sure they have a network of data centers and scrubbing servers that are 1) global and 2) capable of processing at least 500 Gbps. Anything less than that and it frankly is not a service designed to protect an exchange attracting any significant amount of traffic and attention, which is exactly the kind of exchange that needs to worry about DDoS attacks.Swatting The FliesAs cryptocurrency continues to grow, it will continue to be found at the epicenter of many types of cybercrime. For exchange owners, this means they will be tasked with continuously swatting away DDoS attack attempts like they’re pesky flies at what would otherwise be an enjoyable and profitable picnic. Point of pride or not, handling this distributed denial of service attacks is best left to the professionals. So long as the professionals tick the boxes on the three must-haves listed above.

Leveraging AI to Protect the Largest Attack Surfaces from DDoS: Introducing RADAR SmartCycle™

MazeBolt’s latest enhancement to its RADAR solution, SmartCycle is an AI-powered DDoS simulation engine that intelligently prioritizes the attack vectors that are most likely to cause damage to a specific environment, during an attack. Leveraging MazeBolt’s unique vulnerability data to train its AI engine, SmartCycle can reliably predict which attack vectors are most likely to bypass an…

Israel's largest oil refinery website offline after DDoS attack

Source: https://www.bleepingcomputer.com/news/security/israels-largest-oil-refinery-website-offline-after-ddos-attack/

A Brand-New Botnet Is Delivering Record-Size DDoS Attacks

A Brand-New Botnet Is Delivering Record-Size DDoS Attacks A newly discovered network botnet comprising an estimated 30,000 webcams and video recorders—with the largest concentration in the US—has been delivering what is likely to be the biggest denial-of-service attack ever seen, a security researcher inside Nokia said. The botnet, tracked under the name Eleven11bot, first came to light in late…

A Brand New Botnet Is Delivering Record-Size DDoS Attacks

A newly discovered network botnet comprising an estimated 30,000 webcams and video recorders—with the largest concentration in the US—has been delivering what is likely to be the biggest denial-of-service attack ever seen, a security researcher inside Nokia said. The botnet, tracked under the name Eleven11bot, first came to light in late February when researchers inside Nokia’s Deepfield…