Cloudflare recently blocked a massive distributed denial-of-service (DDoS) attack, the largest ever recorded at 3.8 terabits per second. This attack, part of a wave targeting various industries like finance and telecom, utilized a botnet of compromised devices including ASUS routers with a known vulnerability. The attackers aimed to overwhelm target networks and prevent legitimate users from accessing services.

Further analysis revealed that these attacks were hyper-volumetric L3/4 DDoS attacks, exceeding 2 billion packets per second and 3 terabits per second on multiple occasions throughout September 2024. The attacks primarily targeted a fixed UDP port, taking advantage of the limited processing power required to handle UDP traffic. Security researchers believe that these attacks were likely launched by a sophisticated threat actor, given the scale and coordination involved. While the exact motive remains unclear, disrupting critical online services and potentially extorting targeted organizations are plausible goals.

The increase in DDoS attacks, often carried out by hacktivist groups, poses a growing threat. Techniques like using DNS over HTTPS for command and control make detection more difficult. Experts are also warning about security vulnerabilities in systems such as the Common UNIX Printing System (CUPS), which can be exploited to amplify DDoS attacks. This highlights the need for organizations to proactively address their security vulnerabilities and implement robust security measures. Organizations must consider the rising frequency and complexity of DDoS attacks, the role of hacktivist activities, the potential weaponization of newly discovered vulnerabilities, and the importance of prioritizing vulnerability management and security best practices.

To protect against these types of attacks and zero-day vulnerabilities, you can request a consultation with us to receive security solution recommendations and schedule a demo appointment. Through our company’s pre-sales and post-sales value-added services, including routine Health Check services, you can learn in detail how important proactive protection is.