Google Blocks ‘Largest Ever’ Web Ddos Attack | Cyber Security Hub – Cyber Security Hub

Google blocks ‘largest ever’ web DDoS attack | Cyber Security Hub – Cyber Security Hub

Google has reported that it has blocked the ‘largest’ distributed denial of service (DDoS) attack on record, which had a peak of 46 million requests per second (rps).
The attack took place at 9:45am PT on 1 June and targeted a Google Cloud Armour user with HTTPS for a duration of 69 minutes. The attack had 5,256 source IPs from 132 countries contributing to it. Google reported that the attack was the biggest Layer 7 DDoS attack reported to date, at 76 percent larger than the previous record.
In a blog post about the attack, Emil Kiner, senior product manager for Cloud Armor and Satya Konduru, technical lead, both at Google noted that the attack was akin to “receiving all the daily requests to Wikipedia…in just 10 seconds”. 
The DDoS traffic was detected early in the lifecycle by Google Cloud Armour, which alerted the customer to the attack and gave recommendations for a protective rule. This was then deployed before the attack could reach its peak. By doing this, Cloud Armour was able to block the attack and ensure that the user could regain service and continue providing for its end users.
Google noted that the types of services and geographic distribution used in the attack are concurrent with those used in the Mēris method of attacks, which “abuses unsecured proxies to obfuscate the true origin of the attacks” and are “known for massive attacks [that] break DDoS records”.  
To aid in the prevention of DDoS attacks, Google has the following advice: “Deploy defenses and controls at multiple layers of your environment and your infrastructure providers’ network to protect your web applications and services from targeted web attacks”, including “performing threat modeling to…develop proactive and reactive strategies to protect them”.   
24 August, 2022
Online
25 August, 2022
Online
August 30, 2022
Free CS Hub Online Event
September 07 – 08, 2022
Free CS Hub Online Event
14 September, 2022
Online
September 18 – 20, 2022
Dallas, TX
Insights from the world’s foremost thought leaders delivered to your inbox.
2022-09-27
02:00 PM – 03:00 PM GMT
2022-09-14
10:00 AM – 11:00 AM SGT
2022-08-25
10:00 AM – 11:00 AM BST
Reach Cyber Security professionals through cost-effective marketing opportunities to deliver your message, position yourself as a thought leader, and introduce new products, techniques and strategies to the market.
Join CSHUB today and interact with a vibrant network of professionals, keeping up to date with the industry by accessing our wealth of articles, videos, live conferences and more.
Cyber Security Hub, a division of IQPC

Careers With IQPC| Contact Us | About Us | Cookie Policy
Become a Member today!

We respect your privacy, by clicking ‘Subscribe’ you will receive our e-newsletter, including information on Podcasts, Webinars, event discounts, online learning opportunities and agree to our User Agreement. You have the right to object. For further information on how we process and monitor your personal data click here. You can unsubscribe at any time.

source

Leave a Comment

Leave a Reply

Your email address will not be published.

Embrace an Integrated Network Security Infrastructure | Network – Network World

Microsoft at RSA 2022: Envisioning the future of security – Microsoft

Amazon tries a new way to excite you about cybersecurity (it's called laughter) – ZDNet

StackHawk Expands API Security Testing Suite – Security Boulevard