Cloudflare announced it had autonomously mitigated the largest distributed denial-of-service (DDoS) attack<\/a> ever recorded.<\/p>\n The hyper-volumetric attack peaked at an unprecedented 22.2 terabits per second (Tbps) and 10.6 billion packets per second (Bpps), setting a new and alarming benchmark for the scale of cyber threats.<\/p>\n This attack is more than double the size of any previously observed DDoS event, signaling a significant escalation in the capabilities of malicious actors and the botnets they command.<\/p>\n The previous record was<\/a> an 11.5 terabits per second UDP Flood attack. This attack lasted for 35 seconds.<\/p>\n The record-breaking attack was notable not just for its sheer size but also for its shortness. The entire event lasted only about 40 seconds, a tactic designed to overwhelm defenses before they have a chance to respond fully.<\/p>\n Attackers are increasingly using these \u201chit-and-run\u201d DDoS attacks to cause maximum disruption in a minimal timeframe, making automated, real-time detection and mitigation absolutely critical.<\/p>\n The assault, which directed a torrent of 22.2 Tbps of malicious traffic, was a multi-vector attack, combining various techniques to amplify its impact.<\/p>\n Such hyper-volumetric attacks are typically launched from massive botnets<\/a>, networks of compromised computers and IoT devices, which are harnessed to flood a target\u2019s servers with an overwhelming amount of traffic, rendering its services unavailable to legitimate users.<\/p>\n According to Cloudflare, its systems autonomously detected and blocked the attack without any human intervention. This successful defense highlights a crucial shift in cybersecurity: the necessity of automated systems powered by machine learning to counter threats that operate at machine speed.<\/p>\n Legacy DDoS \u201cscrubbing\u201d centers, which often require manual analysis and traffic redirection, are ill-equipped to handle attacks of this magnitude and velocity.<\/p>\n Cloudflare\u2019s global network, with its vast capacity, was able to absorb and neutralize the malicious traffic at the edge, close to its source.<\/p>\n This prevented the attack from reaching and overwhelming the intended target, ensuring its online services remained available and performant throughout the brief but intense assault.<\/p>\n The critical question for every business is whether its security provider possesses the network capacity and automated technology to withstand such an onslaught.<\/p>\n As attackers continue to refine their methods and expand their botnets, the frequency and intensity of hyper-volumetric attacks are expected to grow.<\/p>\n Follow us on Google News<\/a>, LinkedIn<\/a>, and X<\/a> for daily cybersecurity updates. Contact us<\/a> to feature your stories.<\/strong><\/p>\nRecord-Breaking DDoS Attack<\/strong><\/h2>\n
![\"\"](\"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgnaxF6B-NUqJbzhn8S3y21DzfxcMYbdNrv2Y9WtVSADzdIZ3Xc9tKGpNWZndVGNxnmJYgOxDS5JxZv5cI2WaEhT7YnJanRBRKsnvsArSERGeQsQL3jBEm1E6fw2oZh8Qg7fB0vr5H9Js-wtrAZuaUQzuk_ut1Pkh-aCmLL9ZEPzneiR_s9KK9768hYFPIF\/s16000\/Record-Breaking%2520DDoS%2520Attack.webp?ssl=1\")
<\/figure>\n