Saturday, April 30th 2022
Cloudflare: Blockchain Platform Targeted by One of Most Powerful DDoS Attacks in History
Internet services provider Cloudflare has announced that it has successfully protected one of its clients from one of the most powerful DDoS (Distributed-Denial-of-Service) attacks in history. According to the services provider, an undisclosed cryptocurrency platform was targeted by a botnet comprising around 6,000 "zombie" computers distributed throughout 112 different countries. The botnet ultimately generated a collective 15.3 million requests per second. While that's still shy of the largest recorded metric - set at 17.2 million requests per second - the fact that the DDoS attack occurred through HTTPS likely pushed its complexity above the record-setting attack, due to the higher computational workload of secure HTTP. The attack lasted 15 seconds.
DDoS attacks aim to flood a network with requests and data packets in a bid to overload and paralyze it. The attack also showcases the ingenuity of bad actors, as the originated from cloud-based ISPs, as attackers leverage more complex and capable networking hardware than what's usually offered by last-mile ISPs. According to Cloudflare, the botnet seems to have mostly compromised systems with Java-based applications that were still open to the recently-discovered CVE-2022-21449 vulnerability.
Source:
Wired
DDoS attacks aim to flood a network with requests and data packets in a bid to overload and paralyze it. The attack also showcases the ingenuity of bad actors, as the originated from cloud-based ISPs, as attackers leverage more complex and capable networking hardware than what's usually offered by last-mile ISPs. According to Cloudflare, the botnet seems to have mostly compromised systems with Java-based applications that were still open to the recently-discovered CVE-2022-21449 vulnerability.
16 Comments on Cloudflare: Blockchain Platform Targeted by One of Most Powerful DDoS Attacks in History
Could of let it go it's only a undisclosed crypo group most gamers would cheer :laugh:
Now they will probably sit back for a while, analyze the results, and then, after everyone thinks enough time has passed that the threat is gone, BOOOOM, they will come roaring back with a vengeance and do some REAL damage to some major systems somewhere...
With HTTPS request, a handshake is performed, which cost some resources at a server in general. When you send 15 million requests per second, you do understand that no VPS is able to even furfill these tasks without chrashing.
Basicly; cloudflare works as a man in the middle, sorting good vs bad traffic. I use it too for over 90 websites. Not because of the DDOS, but more for the CDN feature.
Lets say i have a english website aimed at both Dutch and US traffic. In Google US my website woud'nt rank well because it will favour US based servers or sites. When i use a CDN basicly a copy of my website is running now in the US in a datacenter on various locations, provided by Cloudflare. The visitor and google now get a "local" website up there without having to rent or hire a special server in the US for that case.
You can also offload quite alot with Cloudflare, if your server is getting quite busy. It filters the nasty traffic out for you.
The fact that CF took this to the face is the real testiment. That said you can always take it stright from the horses mouth instead of second or third hand.
blog.cloudflare.com/15m-rps-ddos-attack/
I encourage anyone to check out the actual engineering blogs, CF is one of the most transparent by far and their post-mortems are top top notch everyone should take note. I would also take a look at the meta (facebook) and twich engineering pages. If your in the space really crazy shit and they generally are not shy about making public how their stuff works or even contributing to open source.
Shit iv setup entire ultra precise NTP ecosystems based off of their stack using chrony and an NTP appliance.
engineering.fb.com/2020/03/18/production-engineering/ntp-service/
super neat stuff. lots of people here would rather play valorant or some shit, but some of the engineering that makes the world function is absolutely wild. in breadth and scope.