Google Cloud repulsed a DDoS attack at 2,54 Tbps

His team revealed today a DDoS attack on Google's service in September 2017, which reached 2,54 Tbps, making it the largest DDoS attack ever recorded.

In one separate report published at the same time, the Google Threat Analysis Team (TAG from Threat Threat Group), the group of Google that analyzes high-level threats, said that the attack was carried out by supported by a state.

TAG researchers said the attack came from the , namely from the network of four Chinese ISPs (ASNs 4134, 4837, 58453 and 9394).

Damian Menscher, security engineer for Google Cloud, said the 2,54 Tbps pick was "the culmination of a six-month campaign" that used multiple attack methods to hit Google's server infrastructure.

Menscher did not disclose which services were the target of the attacks,

"The attacker used various networks to forge 167 Mpps (millions of packets per second) on 180.000 exposed CLDAP, DNS and SMTP servers, which would then send us larger packets," Menscher said.

"This demonstrates the volumes that an intruder can achieve with a good source: The hit was four times larger than the pioneering 623 Gbps attack achieved by mirai botnet a year earlier [in 2016]. ”

In addition, this attack is also larger than the 2,3 Tbps DDoS attack that hit Amazon's AWS infrastructure in February this year.

Although the attack had not been revealed for three years, Google decided to reveal the incident today for different reasons.

The Google TAG team wanted to bring awareness to the growing trend of state teams that use DDoS attacks to hit targets.

The Google Cloud team also wanted to warn that DDoS attacks would intensify in the coming years as internet bandwidth increases.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).