CDN provider Cloudflare has announced that it recently blocked one of the largest HTTPS DDoS attacks ever observed.
At 15.3 million requests per second (RPS), the attack is not the largest application layer attack on record, but it is one of the largest in the HTTPS category.
HTTPS DDoS attacks are typically more expensive and require more computing power because it is more expensive to establish a secure TLS-encrypted connection, the company said.
DeFi projects in the crosshairs
The victim was a Cloudflare customer running a crypto launchpad that showcases Decentralized Finance (DeFi) projects to potential investors.
The attack itself lasted about 15 seconds and was launched by a well-known botnet. Of the 6,000 unique endpoints used in this attack, most came from data centers. The majority (15%) were in Indonesia, with large numbers also coming from Russia, Brazil, India, Colombia and the US.
A total of 1,300 different networks were used in the attack. The top networks included German provider Hetzner Online GmbH, Azteca Comunicaciones Colombia, OVH in France and other cloud providers.
According to recent data from Kaspersky, DDoS attacks are more popular than ever, with multiple records broken in the first quarter of 2022.
The surge in attacks was fueled by the war in Ukraine, as many “hacktivists” took up arms to launch attacks on Russian service providers.
The cyber world has become a veritable battleground in recent years, with nation-states stealing sensitive information and government secrets, spying on elected officials, deploying malware against critical infrastructure, and running ransomware operations to fund further cyber attacks.