Original link: https://www.williamlong.info/archives/6832.html
Cloudflare revealed that it found and successfully blocked the largest HTTPS DDoS attack on record, with a peak of 26 million requests per second, targeting just one of Cloudflare’s free plan customers. The announcement comes two months after Cloudflare said it blocked another large HTTPS DDoS attack against another of its customers.
Similar to the April attack, the attack this time primarily came from cloud service providers, not residential ISPs. This means that virtual machines and servers in the data center are being hijacked to carry out the attack, rather than the Internet of Things (IoT) devices that were previously used.
The botnet that carried out this attack consisted of 5,067 devices, with each node making 5,200 requests per second at the peak of the attack.
Cloudflare noted that the attack was carried out over HTTPS, which means not only spending more money to launch the attack, but also finding ways to counter it. The botnet’s attacks came from 121 countries, with Indonesia, the United States, Brazil and Russia getting the most requests from their countries, and even 3% of the attacks were carried out via Tor connections.
Cloudflare says that all customers of its free and professional CDN plans are protected against downtime from similar attacks, and not only that, this protection is unbilled and unlimited, so no matter the size or duration of the attack No matter how long, the customer will not be charged more for the service.
This article is reprinted from: https://www.williamlong.info/archives/6832.html
This site is for inclusion only, and the copyright belongs to the original author.