Web infrastructure firm Cloudflare mentioned it just lately blocked the biggest recorded volumetric distributed denial-of-service (DDoS) assault, which peaked at 11.5 terabits per second (Tbps).
In volumetric DDoS assaults, attackers overwhelm the goal with large quantities of information, consuming the bandwidth or exhausting system sources, leaving official customers with no entry to the focused servers and providers.
“Cloudflare’s defenses have been working additional time. Over the previous few weeks, we have autonomously blocked lots of of hyper-volumetric DDoS assaults, with the biggest reaching peaks of 5.1 Bpps and 11.5 Tbps,” the corporate mentioned in a Tuesday tweet.
“The 11.5 Tbps assault was a UDP flood that primarily got here from Google Cloud,” it acknowledged, whereas exhibiting in an hooked up picture that the assault solely lasted roughly 35 seconds.
This comes two months after Cloudflare introduced one other record-breaking 7.3 Tbps DDoS assault focusing on an unnamed internet hosting supplier in June. The earlier file was of three.8 Tbps and two billion packets per second (pps) in an assault that Cloudflare additionally blocked in October 2024.
Microsoft additionally mitigated a 3.47 Tbps volumetric DDoS assault in January 2022, when the attackers focused an Azure buyer from Asia. One other large DDoS assault took down and disrupted a number of Microsoft 365 and Azure providers worldwide in July 2024.
​In April, Cloudflare additionally revealed in its 2025 Q1 DDoS Report that it mitigated a file variety of DDoS assaults in 2024, with a 198% quarter-over-quarter enhance and an enormous 358% year-over-year soar.
As the corporate acknowledged, it mitigated a complete of 21.3 million DDoS assaults that focused Cloudflare’s clients final yr, in addition to its personal infrastructure in 6.6 million assaults over an 18-day multi-vector marketing campaign.
“Of the 20.5 million DDoS assaults, 16.8M have been network-layer DDoS assaults, and of these 6.6M focused Cloudflare’s community infrastructure immediately,” Cloudflare mentioned on the time.
“These assaults have been a part of an 18 day multi-vector DDoS marketing campaign comprising SYN flood assaults, Mirai-generated DDoS assaults, SSDP amplification assaults to call a couple of.”
Essentially the most important spike was seen by network-layer assaults, which additionally noticed the sharpest progress for the reason that begin of 2025, reaching a 509% YoY enhance.
46% of environments had passwords cracked, almost doubling from 25% final yr.
Get the Picus Blue Report 2025 now for a complete take a look at extra findings on prevention, detection, and knowledge exfiltration tendencies.
