Russian state-owned Sberbank hit by 1 million RPS DDoS attack

Russian state-owned Sberbank hit by 1 million RPS DDoS attack

November 8, 2023 at 01:17PM

Russian financial organization Sberbank recently faced its largest distributed denial of service (DDoS) attack in history. The attack reached 1 million requests per second (RPS), four times larger than any previous attack on the bank. However, it is not as significant as recent record-breaking DDoS attacks, which reached up to 398 million RPS. The attack on Sberbank was attributed to new, highly skilled hackers. This comes after previous attacks on the bank’s online customer services in May 2022.

Another blow to Russia’s financial system occurred when the National Payment Card System (NSPK) website became unavailable and was later defaced following a cyberattack. The attackers claimed responsibility and stated that they had stolen 31 GB of data, although NSPK assured that no sensitive customer information was compromised.

Based on the meeting notes provided, here are the key takeaways:

1. Sberbank, a major Russian financial organization, recently faced a powerful distributed denial of service (DDoS) attack, which was described as the largest in recent history. The attack reached one million requests per second (RPS), four times larger than any previous DDoS attack faced by the bank.
2. The attackers behind the DDoS attack are considered new and highly skilled criminals. They targeted the largest Russian resources systematically.
3. Although the attack on Sberbank was significant, it doesn’t compare to record-breaking DDoS attacks using the new ‘HTTP/2 Rapid Reset’ technique. In late August, companies like Amazon, Cloudflare, and Google faced much larger DDoS attacks, with peaks ranging from 155 million RPS to 398 million RPS.
4. Sberbank previously repelled unprecedented hacker attacks in May 2022, including massive DDoS waves. One attack measured at 450GB/sec and was generated by a botnet of 27,000 compromised devices.
5. The National Payment Card System (NSPK) in Russia also suffered a recent blow when its website became unavailable and later defaced with messages about a client-impacting data breach. However, NSPK assured the press that sensitive customer data was not stolen and the payments system was not impacted.
6. The ‘DumpForums’ group and the Ukrainian Cyber Alliance claimed responsibility for the NSPK attack and stated they had stolen 31 GB of data.

These are the main points to highlight from the meeting notes. Let me know if you need further clarification or additional information.

Full Article