Slashdot Mirror

← Back to Stories (view on slashdot.org)

Another 100 Gigabit DDoS Attack Strikes — This Time Unreflected

Posted by Soulskill on from the go-big-or-go-home dept.

darthcamaro writes "In March of this year, we saw the first ever 100 Gigabit DDoS attack, which was possible due to a DNS Reflection Amplification attack. Now word is out that a new 100 Gigabit attack has struck using raw bandwidth, without any DNS Reflection. 'The most outstanding thing about this attack is that it did not use any amplification, which means that they had 100 Gigabits of available bandwidth on their own,' Incapsula co-founder Marc Gaffan said. 'The attack lasted nine hours, and that type of bandwidth is not cheap or readily available.'"

13 of 93 comments (clear)

  1. Is that all? by Anonymous Coward · · Score: 5, Funny

    It was probably just one guy in Tokyo using his $9/month internet package ...

    1. Re:Is that all? by goddidit · · Score: 5, Funny

      On his mobile, to be exact.

      --
      This .sig is exactly 120 characters long.
    2. Re:Is that all? by Cryacin · · Score: 5, Funny

      the guy mistyped the address on the page and hit refresh. Very Very quickly.

      --
      Science advances one funeral at a time- Max Planck
    3. Re:Is that all? by Yaotzin · · Score: 5, Funny

      ...For nine hours.

      --
      Error: No error occurred
    4. Re:Is that all? by wisnoskij · · Score: 5, Funny

      It was a Korean professional Starcraft player.

      --
      Troll is not a replacement for I disagree.
  2. Incapsula by Anonymous Coward · · Score: 5, Informative

    Seriously...this reads like a brochure for Incapsula's services lol

    1. Re:Incapsula by Joce640k · · Score: 5, Interesting

      They don't name the site, they don't name the attacker, the customers were "completely unaffected"....they could be making it up for all we know.

      --
      No sig today...
    2. Re:Incapsula by lazybeam · · Score: 5, Informative

      We are an Incapsula customer and I can tell you we were NOT "completely unaffected". We experienced about an hour total of complete down time and several hours of slow response. Our servers were unloaded - no problems when bypassing Incapsula. So I guess they protected us from "that" but in the meantime all sites were unreachable. Though different ISPs had different levels of slowness at different times (trying our two different office connections and three different mobile networks).

      --
      --
      no sig for you. come back one year.
  3. Is this an ad? by Anonymous Coward · · Score: 5, Insightful

    TFA sure reads like one...

  4. no real verifiable info but plenty of product plug by YesIAmAScript · · Score: 5, Informative

    The worst example of advertisement through press release in recent memory.

    At least on slashdot.

    --
    http://lkml.org/lkml/2005/8/20/95
  5. Re:How much bandwidth is that? by Anonymous Coward · · Score: 5, Funny

    Using the perl "english words have lower priority than real operators" convention (see "and" v/s "&&"), the / binds more tightly than the "per" operator, and thus, it's Gb / (s/s). And the seconds therefore cancel. ;)

  6. Re:100 GBit isn't large by wonkey_monkey · · Score: 5, Funny

    Thank you Captain Multiplication.

    --
    systemd is Roko's Basilisk.
  7. Re:I can't get one thing by malacandrian · · Score: 5, Insightful

    That is the point of using a botnet to run a DDoS, yes. A single control signal issues a huge surge in traffic. That doesn't make it an amplified attack though. An amplified attack is when the zombies trick a third party (such as a DNS server) to reply to the victim with more information than you sent them. This can up the size of the attack 100-fold.