Wednesday, January 22, 2025
HomeDDOSMassive DDoS Attack on Streaming Service with 292,000 RPS (Requests Per Second)...

Massive DDoS Attack on Streaming Service with 292,000 RPS (Requests Per Second) From 402,000 Different Botnet IP’s

Published on

SIEM as a Service

Follow Us on Google News

An unrevealed streaming site hit with massive DDoS attack from 402,000 different IoT(Internet of Things) Botnet IPs, which directed a peak flow of 292,000 RPS (Requests Per Second).

DDoS Attack is one of most dangerous threat for any organization and the attack main aims to exhaust the resources of a network, application or service that leads an organization to face the various technical impacts.

A cybersecurity company Imperva that focusing on DDoS attack protection and mitigation recently experienced a heavy DDoS attack on their CDN customers in the entertainment industry nearly 13 days.

Researchers referred to this attack as Layer 7 DDoS attack Imperva has ever seen and they are continuously fighting against the attack without downtime.

“This is the largest DDoS Layer 7 (application layer) attack to date Imperva have observed, using the most relevant measure for Layer 7 attacks”

DDoS Attack Initiated From Brazil

Based on the telemetry data and IP’s analysis, researchers learned that the attack the main source was originated in Brazil.

In order to mask their attack, Attackers used a legitimate User-Agent, the same used by entertainment industry customer service application to target the authentication component of the streaming application.

According to Imperva, Researchers believe that the attack may be intended to perform a brute force attack or DDoS attack. As this attack occurred in late spring before the launch of ATO, we were unable to analyze the brute force aspects of the attack.

Most of the IP’s used for this attack had a sam open port 2000 and 7547, also it associated with IoT devices infected by the Mirai malware .

” However, a botnet with 400,000 IPs can perform a “slow and low” attack: each IP tries a few logins,  goes inactive, and then tries a few more. In such a technique, the access rate is very low, mimicking legitimate login attempts, and staying under rate limit policies.” Imperva said.

IoT devices are continuously growing faster Since 2016, many new IoT vendors have entered the market, and the attackers are taking advantage of abused it for creating botnets.

Since DDoS attacks dominate the security in so many ways, businesses are required to focus on Application Layer 7 DDoS attacks and Network Layer 3/4 DDoS attacks.

Powerful DDoS attacks always end up costing your organization tens of thousands of dollars in man-hours, lost business and reputation damages.

Learn the DDoS Attack Prevention Method on Your Enterprise’s Systems – A Detailed Report.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity updates also you can take the Best Cybersecurity course online to keep yourself updated.

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

The Growing Role of AI-Powered SAST in the Developer Toolkit

In today’s app dev world, where new apps and millions of lines of code...

Ex-CIA Analyst Pleaded Guilty For Leaking Top Secret National Defense Information

A former CIA analyst, Asif William Rahman, has pleaded guilty to charges of retaining...

Record Breaking 5.6 Tbps DDoS attack Launched by Mirai Botnet

 The Mirai botnet unleashed a record-breaking Distributed Denial of Service (DDoS) attack on October...

Criminal IP and OnTheHub Partner to Deliver Advanced Cybersecurity Solutions for Education

AI SPERA, a leading Cyber Threat Intelligence (CTI) provider, has collaborated with OnTheHub, a...

API Security Webinar

Free Webinar - DevSecOps Hacks

By embedding security into your CI/CD workflows, you can shift left, streamline your DevSecOps processes, and release secure applications faster—all while saving time and resources.

In this webinar, join Phani Deepak Akella ( VP of Marketing ) and Karthik Krishnamoorthy (CTO), Indusface as they explores best practices for integrating application security into your CI/CD workflows using tools like Jenkins and Jira.

Discussion points

Automate security scans as part of the CI/CD pipeline.
Get real-time, actionable insights into vulnerabilities.
Prioritize and track fixes directly in Jira, enhancing collaboration.
Reduce risks and costs by addressing vulnerabilities pre-production.

More like this

Record Breaking 5.6 Tbps DDoS attack Launched by Mirai Botnet

 The Mirai botnet unleashed a record-breaking Distributed Denial of Service (DDoS) attack on October...

Apache CXF Vulnerability Triggers DoS Attack

Colm O hEigeartaigh announced a critical vulnerability affecting various versions of Apache CXF, a...

New IoT Botnet Launching Large-Scale DDoS attacks Hijacking IoT Devices

Large-scale DDoS attack commands sent from an IoT botnet's C&C server targeting Japan and...