Internet companies Google, Amazon and Cloudflare say they have weaken the internet’s largest-known denial of service attack .
Major technology companies Google, Microsoft, Amazon and Cloudflare have said that they have discovered the largest known Distributed Denial-of-Service (DDoS) cyber attack that could have disrupted a number of services offered by these companies.
The DDoS attacks, initially detected in August, were officially reported on October 10. Until now it has been reported that this new series of DDoS attacks reached a peak of 398 million requests per second (rps), and relied on a novel HTTP/2 “Rapid Reset” technique based on stream multiplexing that has affected multiple Internet infrastructure companies. By contrast, last year’s largest-recorded DDoS attack peaked at 46 million rps in august 2022.
A denial of service (Dos ) attack happens when a service that would work usually becomes unavailable .There can be many reason for unavailable but all those companies are finding its cause until now its main root cause is not observed .All the four Companies wrote in there respective blog about its effect and cause on its server as well further what measures they are going to take to prevent it.
Image source: https://bl-i.thgim.com/public/news/l5gfw2/article6…ce/alternates/FREE_1200/cyber%20security%2001.jpg
According to Google it has been posted that “In August, Google’s DDoS Response Team faced a significant challenge, countering a novel HTTP/2-based DDoS attack that peaked in size. These attacks were unknown, with the largest one generating over 398 million requests per second, surpassing all previous layer 7 attacks. To put it in outlook, just two minutes of one such attack generated more requests than the total article views reported by Wikipedia for the entire month of September 2023.”
According to Cloudfare it has been posted that this attack was 3 times larger than any they’ve seen before. the DDoS attack was launched using a “modestly-sized botnet” of around 20,000 machines. Successfully defending against this threat is vital to protect critical infrastructure, customers, and the Internet itself. Cloudflare, uniquely equipped to handle threats of this scale swiftly, is committed to maintaining the Internet’s integrity. CEO Matthew Prince pint out their dedication to this mission.
As of Amazon said ” AWS(Amazon web service) detected and protected customer applications from the attack, which was discovered in late August. AWS identified an unusual surge in HTTP/2 requests to Amazon CloudFront between August 28 and August 29, 2023, peaking at over 155 million requests per second (RPS).”
Microsoft also posted there update about Dos attack additionally adding that they rolled out protections in Microsoft Security Updates released on October 10.
It has been updated that Cloudflare, Google, and Amazon teamed up to exchange technical information regarding CVE-2023-44487(Dos attack). Google has observed various versions of this attack since August, involving tactics where hackers open and cancel streams repeatedly.
Image source: data:image/jpeg;base64,/9j/4AAQSkZJRgABAQAAAQABAAD…HwQhAej8H+Eg/LHwR6Pwf4SD8sfBCEB6Pwf4SD8sfBCEIP//Z