Article Details

Mirai Botnet Launches Record 5.6 Tbps DDoS Attack with 13,000+ IoT Device. Web infrastructure and security company Cloudflare on Tuesday said it detected and blocked a 5.6 Terabit per second (Tbps) distributed denial-of-service (DDoS) attack, the largest ever attack to be reported to date. The UDP protocol-based attack took place on October 29, 2024, targeting one of its customers, an unnamed internet service provider (ISP) from Eastern Asia. The activity originated from a Mirai-variant botnet. "The attack lasted only 80 seconds and originated from over 13,000 IoT devices," Cloudflare's Omer Yoachimik and Jorge Pacheco said in a report. That said, the average unique source IP address observed per second was 5,500, with the average contribution of each IP address per second around 1 Gbps. The previous record for the largest volumetric DDoS assault was also reported by Cloudflare in October 2024, which peaked at 3.8 Tbps. Cloudflare also revealed it blocked approximately 21.3 million DDoS attacks in 2024, a 53% increase from 2023, and that the amount of attacks exceeding 1 Tbps grew by 1,885% quarter-over-quarter. In the fourth quarter of 2024 alone, as many as 6.9 million DDoS attacks were mitigated. Some of the other notable statistics observed during Q4 2024 are listed below - The development comes as cybersecurity companies Qualys and Trend Micro revealed that offshoots of the notorious Mirai botnet malware are targeting Internet of Things (IoT) devices by exploiting known security flaws and weak credentials to use them as conduits for DDoS attacks.