Someone seems determined to deny service to a specific company in Eastern Europe and is carrying out massive Distributed Denial of Service (DDoS) attacks to do so.
After executing (and failing) the largest DDoS attack ever seen in July 2022, the same group came back with an even bigger attack, Akamai reported.
The company reports that the attack was against an anonymous entity in Eastern Europe and was 7% stronger than the July 2022 incident, suggesting the threat actor took time to build up strength from its botnet. and come back stronger.
Targeting multiple data centers
The attack, which peaked at 704,8 Mpps, is just one of many attacks the company has experienced in the meantime, and Akamai says it was "relentlessly bombarded." In July it suffered 75 attacks and in August 201 accumulated attacks. The traffic came from 1813 IP addresses, compared to 512 in previous attacks.
"The attackers' command and control system quickly triggered the multicast attack, which grew in 60 seconds from 100 to 1813 active IPs per minute," says Akamai.
The threat actor also went for a broader target, as in addition to attacking the company's main data center, it also targeted six data center locations in Europe and North America.
"Such a widely distributed attack could drown an unprepared security team in alerts, making it difficult to assess the severity and scope of the intrusion, let alone respond to the attack," the company added to the society.
With the security measures in place, 99,8% of malicious traffic was successfully blocked.
Akamai did not specify who the perpetrators might have been, but said whoever they were operates a "highly sophisticated global botnet" of compromised endpoints (opens in a new tab).
Via: BleepingComputer (Opens in a new tab)