Cloudflare averts DDoS attack of 26 million requests per second
Cloudflare registered a ddos attack of 26 million requests per second last week. The number of requests per second over https in this attack exceeds that of the previous attack in April. It had a volume of 15 million requests per second.
The attack targeted a Cloudflare customer’s website. The company has said the attack was averted. Like the attack in April, this attack also went through https. This is striking, because more computing power is required for encrypted connections. As a result, attackers have to pay higher amounts for DDoS attacks via TLS connections, writes Cloudflare.
What Cloudflare also notices is that the attack comes from a bot network consisting of 5,067 bots. Each individual bot generated an average of 5,200 requests per second. For comparison, Cloudflare brings in a larger bot network, which the company has been tracking for quite some time. That network consists of 730,000 bots and can only deliver 1000 requests per second in its entirety.
In less than 30 seconds, the botnet generated more than 212 million requests across more than 1,500 networks. The networks are spread over 121 countries. More than 15 percent of the requests came from Indonesia. The reason for the attack is unknown.