"Cloudflare on Wednesday said it detected and mitigated the largest ever distributed denial-of-service (DDoS) attack that measured at 29.7 terabits per second (Tbps). The activity, the web infrastructure and security company said, originated from a DDoS botnet-for-hire known as AISURU, which has been linked to a number of hyper-volumetric DDoS attacks over the past year. The attack lasted for 69 seconds. It did not disclose the target of the attack."
"The botnet has prominently targeted telecommunication providers, gaming companies, hosting providers, and financial services. Also tackled by Cloudflare was a 14.1 Bpps DDoS attack from the same botnet. AISURU is believed to be powered by a massive network comprising an estimated 1-4 million infected hosts worldwide. "The 29.7 Tbps was a UDP carpet-bombing attack bombarding an average of 15,000 destination ports per second," Omer Yoachimik and Jorge Pacheco said. "The distributed attack randomized various packet attributes in an attempt to evade defenses.""
Cloudflare detected and mitigated a 29.7 Tbps DDoS attack originating from the AISURU botnet, lasting 69 seconds. The attack was a UDP carpet-bombing assault targeting an average of 15,000 destination ports per second and randomized packet attributes to evade defenses. AISURU also launched a 14.1 Bpps attack and is estimated to comprise 1–4 million infected hosts. Cloudflare mitigated 2,867 AISURU attacks since the start of the year, including 1,304 hyper-volumetric attacks in Q3 2025. A total of 8.3 million attacks were blocked in the reported period, with 36.2 million thwarted in 2025. Attacks exceeding 100 Mpps rose 189% quarter-over-quarter. Most attacks end within ten minutes: 71% of HTTP DDoS and 89% of network-layer attacks. Seven of the top ten DDoS source locations are in Asia, including Indonesia, Thailand, Bangladesh, Vietnam, India, Hong Kong, and Singapore.
Read at The Hacker News
Unable to calculate read time
Collection
[
|
...
]