Min menu


Amazon experienced the largest DDoS attack ever recorded

Amazon said: Amazon Web Services (AWS) has mitigated the impact of the largest denial of service deprivation (DDoS) ever recorded, stopping 2.3-terabyte peak traffic in mid-February this year, and the incident was detected in AWS Shield Threat Landscape, a report detailing web attacks mitigated by the AWS Shield Protection Service from Amazon.

To put this figure in perspective, reports indicate that the largest DDoS attack recorded before February of this year was in March 2018, when the NetScout Arbor service eased a 1.7-peak traffic volume attack, and the GitHub platform revealed In February 2018 it was attacked with a traffic volume of 1.35 terabits peak.

The report did not specify the target Amazon Web Services (AWS) client but said: The attack was carried out with hijacked web servers (CLDAP), and caused three days of high threat to AWS Shield employees, a service designed to protect cloud computing platform clients from Amazon from DDoS attacks, as well as from writing chat robots and application vulnerabilities.

CLDAP is an alternative to the older LDAP protocol, used to connect, search, and modify shared directories across the Internet, and the protocol has been abused in DDoS attacks since late 2016, and CLDAP servers are known to inflate DDoS traffic by It is 70 times as powerful as its initial size, making it a highly wanted protocol for DDoS attacks.

Denial of service attacks (NetScout Arbor) and (GitHub) targeted Memcached servers, and these Internet-exposed servers were deliberately misused to inflate traffic and access to huge frequency bands, and several hacking groups in 2018 rushed to misuse of more than 100 A server (Memcached) in order to make a mess on the Internet.

In the years that followed, Internet Service Providers (ISPs) and Content Delivery Networks (CDNs) secured exploited Memcached servers, and massive DDoS attacks became rare.

Most of the DDoS attacks now usually peak in the 500Gb range, which is why news of a 2.3T peak traffic was surprising to companies operating in the industry.

Amazon said: The largest attacks that I witnessed during the period between the second quarter of 2018 and the fourth quarter of 2019 were smaller than 1 TB, while 99 percent of the attacks in the first quarter of this year was 43 gigabytes or less.