>
Someone seems determined to deny service from a specific company in Eastern Europe, and is running some massive Distributed Denial of Service (DDoS) attacks to do so.
After carrying out (and failing) the largest-ever DDoS attack in July 2022, the same group has returned with an even bigger attack, Akamai reports.
The company reports that the attack targeted an undisclosed entity in Eastern Europe and was 7% stronger than the July 2022 incident, suggesting the threat actor took time to amplify the forces of its botnet and come back stronger. come.
Target multiple data centers
The attack, which peaked at 704.8 Mpps, is just one of many attacks the company has endured in the meantime, with Akamai saying it was “bombed relentlessly”. It had 75 attacks in July and 201 cumulative attacks in August. Traffic came in from 1813 IPs, compared to 512 in the earlier attacks.
“The attackers’ command and control system had no delay in triggering the multidestination attack, which escalated from 100 to 1,813 active IPs per minute in 60 seconds,” Akamai said.
The threat actor also went for a bigger target, as in addition to hitting the company’s primary data center, it also targeted six data center locations in both Europe and North America.
“An attack so widely distributed can drown an unprepared security team in alerts, making it difficult to assess the severity and extent of the intrusion, let alone combat the attack,” the company added.
Because security measures were in place, 99.8% of malicious traffic was successfully blocked.
Akamai didn’t say who the culprits might be, but it did say that whoever it was, it’s operating a “highly sophisticated global botnet” of compromised endpoints (opens in new tab).
Through: BleepingComputer (opens in new tab)