Google absorbed record-breaking 2.5 Tbps DDoS attack in September 2017

Google revealed on Friday that in September 2017 its infrastructure absorbed a 2.5 Tbps distributed denial-of-service (DDoS) attack, a record-breaking UDP amplification attack from several Chinese Internet Service Providers (ISPs).

According to the search giant, the attack in 2017 was four times larger than the record-breaking 623 Gbps attack of the Mirai botnet a year earlier and it remains the highest bandwidth attack reported to date.

“Our infrastructure absorbed a 2.5 Tbps DDoS in September 2017, the result of a six-month campaign involving multiple attack methods. Despite targeting thousands of our IP addresses at the same time, presumably hoping to slip through automated defenses, the attack had no impact, ”Damian Menscher, Security Reliability Engineer at Google Cloud wrote in a blog post.

The attackers used different networks to spoof 167 Mpps (millions of packets per second) to 180,000 exposed CLDAP, DNS, and SMTP servers, which would then send large responses to us, showing the volumes an attacker can reach with good means , Menscher added.

While the DDoS attack had no impact, Google said it reported thousands of vulnerable servers to their network providers and also worked with them to track down the source of the spoofed packets so they could be filtered.

Furthermore, the post highlights some innovative ways to defend against these advanced attacks. For example, customers can use Google Cloud Armor to protect their websites and applications from exploit attempts and distributed denial-of-service (DDoS) attacks. Furthermore, Cloud Armor WAF provides built-in rules for common attacks, as well as the ability to implement custom rules to drop offensive application layer requests using a wide set of HTTP semantics.

Google recommends that individual users ensure their computers and IoT devices are patched and secured. On the other hand, companies are advised to report criminal activity, ask their network providers to track the sources of spoofed attack traffic, and share information about attacks with the Internet community in a way that does not provide timely feedback to the adversary.

News Highlights:

  • Google recommends that individual users ensure their computers and IoT devices are patched and secured. On the other hand, companies are advised to report criminal activity, ask their network providers to track the sources of spoofed attack traffic, and share information about attacks with the Internet community in a way that does not provide timely feedback to the adversary.
  • Google absorbed the record-breaking 2.5 Tbps DDoS attack in September 2017
News - Tech News, Latest News, Business News and world News