According to the latest report, Cloudflare revealed that it detected and mitigated the largest ever HTTPS DDoS attack, which issued 26 million requests per second. Target is one of Cloudflare’s free plan customers. Cloudflare has previously successfully responded to one of the largest HTTPS DDoS attacks ever, at 15.3 million requests per second.
JOIN US ON TELEGRAM
Similar to the April attack, this attack was primarily from cloud service providers, not residential Internet service providers. This means that virtual machines and servers are hijacked to perform attacks, rather than using Internet of Things (IoT) devices. The botnet that performed this attack consisted of 5,067 devices, with each node making 5,200 requests per second at the peak of the attack.
Moreover, Cloudflare noted that the attack was done over HTTPS, and the use of HTTPS makes it more expensive for attackers and victims trying to mitigate the attack. Botnet attacks came from 121 countries and regions, with the most requests coming from Indonesia, the United States, Brazil, and Russia. 3% of attacks are carried out over Tor connections.
Cloudflare said all customers of its free and pro plans are protected from such attacks. Its protection is unlimited, so customers won’t pay more for this service, regardless of the size or duration of the attack.
