5 月 7 日消息,据 Neowin 报道,Cloudflare 近期透露,已成功应对来自多个国家地区的有记录以来最大的 HTTPS DDoS 攻击之一。该公司表示,该僵尸网络每秒发出 1530 万次请求 (rps),使其成为其目睹的针对客户的最大 HTTPS DDoS 攻击之一。
[Cloudflare 成功应对有史以来最大 HTTPS DDoS 攻击之一:每秒 1530 万次请求]On May 7, according to Neowin, Cloudflare recently revealed that it has successfully responded to one of the largest HTTPS DDoS attacks on record from multiple countries. The company said the botnet made 15.3 million requests per second (rps), making it one of the largest HTTPS DDoS attacks against customers it has ever witnessed.
[Cloudflare successfully tackles one of the largest HTTPS DDoS attacks ever: 15.3 million requests per second] Cloudflare said the botnet attack targeted a crypto launchpad company designed to connect crypto projects with investors. Customers are on Cloudflare's Pro plan and are protected by Cloudflare in less than 15 seconds of the attack. Other Cloudflare customers are also automatically protected and require no action.
The largest attack that Cloudflare encountered was reported last August, when a botnet performed a 17.2 million rps DDoS attack, but this was using HTTP traffic instead of HTTPS traffic as used in the latest attack. Cloudflare said the use of HTTPS makes it more expensive for attackers and victims trying to mitigate attacks.
Cloudflare noted that such attacks primarily originate from data centers, and it noted that more attacks were coming from cloud computing ISPs overall, rather than residential network ISPs. The botnet involved 6,000 unique bots originating in 112 countries and regions around the world. The countries that host the most bots include Indonesia, Russia, Brazil, India, Colombia, and the United States. Attacks came from more than 1,300 networks, including top networks such as Hetzner Online GmbH, Azteca, and others.
Cloudflare 表示,僵尸网络攻击的目标是一家加密 launchpad 公司,旨在将加密项目与投资者联系起来。客户在 Cloudflare 的专业计划中,并在攻击进行的不到 15 秒内受到 Cloudflare 的保护。其他 Cloudflare 客户也会自动受到保护,无需采取任何措施。
Cloudflare 遇到的最大攻击是去年 8 月报告的,当时一个僵尸网络执行了 1720 万 rps DDoS 攻击,但这是使用 HTTP 流量而不是最新攻击中使用的 HTTPS 流量。Cloudflare 表示,HTTPS 的使用使攻击者和试图减轻攻击的受害者的成本更高。
Cloudflare 指出,这种攻击主要来自数据中心,并且它注意到更多的攻击总体上来自云计算 ISP,而不是住宅网络 ISP。该僵尸网络涉及 6000 个独特的僵尸程序,起源于全球 112 个国家和地区。托管机器人最多的国家地区包括印度尼西亚、俄罗斯、巴西、印度、哥伦比亚和美国。攻击来自 1300 多个网络,其中包括 Hetzner Online GmbH、Azteca 等顶级网络。
