October 4, 2024 at 06:00AM
Cloudflare revealed fending off a record-setting 3.8 Tbps DDoS attack and multiple other attacks. The attacks, primarily targeting financial, internet, and telecommunication sectors, utilized compromised devices across several countries. Cloudflare attributed the high-rate attacks to botnets exploiting a critical ASUS router flaw. DDoS attacks have surged in frequency, with added complexities including DNS-over-HTTPS usage. Additionally, a recent Linux vulnerability in CUPS was identified as a potential DDoS vector.
From the meeting notes, it’s clear that Cloudflare recently mitigated a massive DDoS attack, as well as fended off numerous other attacks targeting various industries. The attacks leverage a large botnet comprising compromised ASUS home routers and are aimed at exhausting a target’s network bandwidth and CPU cycles. These high-volume attacks present a significant challenge, particularly for organizations with insufficient capacity and on-premise equipment. The notes also highlight the increasing frequency of DDoS attacks, especially targeting financial and public utility sectors, and the complexities introduced by hacktivist activities and the use of DNS-over-HTTPS for command-and-control. Additionally, there’s a new concern regarding Common UNIX Printing System (CUPS) vulnerabilities in Linux, which could be exploited for DDoS attacks with a high amplification factor, affecting both the target and the host of the vulnerable CUPS server. It’s important for organizations to be aware of these threats and take necessary measures to protect their systems and networks.