It is said that in the early summer of 2021, DDoS attacks were occurring at a rate of 17.2 million per second on Cloudflare. According to Cloudflare, it is three times larger than all attacks in the past, and it is 68% even compared to the legitimate HTTP traffic volume at the same time.
According to Cloudflare, the attack was mitigated by automatic reduction with an autonomous edge DDoS protection system. Cloudflare processed more than 25 million legitimate HTTP requests per second on average in the second quarter of 2021, with this attack reaching 17.2 million requests per second, or 68%.
The location of the attack was the Mirai botnet, known as the largest DDoS attack ever recorded at 1 Tbps in 2016, and it is said that the target was a financial industry customer using Cloudflare. The attack traffic came from over 20,000 bots in 125 countries worldwide.
In addition, the number of requests per second of 17.2 million was the largest DDoS attack in the past for Cloudflare, but it is said that 8 million attacks per second were made not long ago. The maximum attack bitrate was 1.2 Tbps, exceeding the 1 Tbps recorded by the botnet on Mira in 2016. The attack targeted hosting providers and gaming companies based in the Asia Pacific region.
According to Cloudflare, L3 and L4 DDoS attacks by Mirai botnets are projected to increase by 71% by the end of August 2021, and L7 DDoS attacks by Mirai and other botnets are projected to increase by 185% by the end of August. Accordingly, the need for automated always-on protection becomes important. Related information can be found here.