Google absorbed record-breaking 2.5 Tbps DDoS attack in September 2017

In this news, we discuss the Google absorbed record-breaking 2.5 Tbps DDoS attack in September 2017.

Google revealed on Friday that its infrastructure had absorbed a 2.5 Tbps DDoS (Distributed Denial of Service) attack in September 2017, a record-breaking UDP amplification attack from several Chinese Internet Service Providers (ISPs).

According to the search giant, the 2017 attack was four times larger than the Mirai botnet’s record 623 Gbps attack a year earlier and remains the highest bandwidth attack reported to date.

“Our infrastructure absorbed a 2.5 Tbps DDoS in September 2017, the culmination of a six-month campaign using multiple attack methods. Although simultaneously targeting thousands of our IP addresses, presumably in the hope of overriding automated defenses, the attack had no impact, ”wrote Damian Menscher, security reliability engineer at Google Cloud in a report. blog post.

The attackers used multiple networks to spoof 167 Mpps (millions of packets per second) to 180,000 exposed CLDAP, DNS and SMTP servers, which would then send us large responses, demonstrating the volumes that an attacker with sufficient resources can reach, a added Menscher.

Even though the DDoS attack had no impact, Google says it reported thousands of vulnerable servers to their network providers and also worked with them to trace the source of the spoofed packets so that they could be filtered.

Furthermore, the article highlighted innovative ways to defend against these advanced attacks. For example, customers can deploy Google Cloud Armor to protect their sites Web and their applications against attempted exploitation and Distributed Denial of Service (DDoS) attacks. In addition, Cloud Armor WAF provides built-in rules for common attacks as well as the ability to deploy custom rules to suppress abusive application layer requests using a wide variety of HTTP semantics.

Google recommends that individual users ensure that their computers and IoT devices are patched and secure. On the other hand, it is recommended that companies report criminal activity, ask their network providers to trace the sources of fraudulent attack traffic and share information about attacks with the internet community in a way that does not provide timely feedback to the opponent.

News Highlights:

  • Google recommends that individual users ensure that their computers and IoT devices are patched and secure. On the other hand, it is recommended that companies report criminal activity, ask their network providers to trace the sources of fraudulent attack traffic and share information about attacks with the internet community in a way that does not provide timely feedback to the opponent.
  • Google absorbed record 2.5 Tbps DDoS attack in September 2017
Bollyinside - Latest News and Reviews
Enable registration in settings - general
Compare items
  • Total (0)
Compare
0