Google this week revealed more details about the biggest denial of service attack on record, with a volume of no less than 2.5 Tbps hitting the company’s servers in September 2017. According to information released by the Analysis Group of the company’s threats, the coup is related to the Chinese government and used traffic reversed from the country’s internet providers to bomb the giant’s infrastructure.
The extremely high volume of connections recorded just over three years ago, however, was just the culmination of what, too, is the largest DDoS attack campaign ever recorded in history. Not only did the amount of data break the record, but also the duration, with the strikes taking place over a six-month period using different methods that aimed at different company services, often simultaneously.
Google attributed the blame to a criminal group called APT31, linked to China’s government cyber war efforts. The hackers would also be involved in other actions against U.S. companies and organizations, including attempts to use phishing to compromise devices used by candidates in this year’s elections, as well as operations aimed at undermining the campaigns of presidential candidates, Donald Trump and Joe Biden .
The numbers speak of an attack four times greater than the previous record holder, registered in 2019 when the Mirai botnet moved more than 623 Gbps against corporate servers in the U.S. and Europe. The scam against Google now leads that ranking handily and, however much the company cites attempts at ransomware and phishing against companies have become commonplace in the current landscape, it warns that DDoS scams should not be underestimated.
Denial of service attacks involve the use of compromised networks to send successive requests, at great speed and volume, to servers, as a way to take them down. As much as campaigns of this type do not result in data theft or physical damage, they can drastically compromise the operations of companies and public services, creating difficulties in access and even unavailability. The losses of that period can easily exceed the million dollar mark for large platforms.
The numbers released by Google serve, internally, as a demonstration of what the company’s servers are capable of withstanding, and externally, they expose how far hackers can go in such attempts. The conclusion, however, is unknown since, observing the record DDoS, the giant claims that estimating the size of such scams in the future is impossible, as well as a possible preparation or separation of resources to deal with campaigns that may happen.
Government officials have preferred this tactic, according to the Google report, and expanding its ability to deliver increasingly heavy and long-lasting blows. Despite the negative outlook in this regard, the giant cites some initiatives that had a positive impact and helped keep its services on the air, such as an accurate analysis of the network, in order to locate unprotected servers and solve problems quickly, as well as the use of defenses based on in artificial intelligence and cloud computing that helped to mitigate the access load.
Above all, the company asks players in the infrastructure sector to work together to identify and dismantle networks that are used to conduct attacks. Botnets and malicious servers can have traffic redirected or even banned, while updates to IoT devices, routers and other gadgets that are often used in scams in this category should also receive attention from manufacturers, service providers and, at the end , end users.
Source: Google Cloud
Did you like this article?
Subscribe your email to Canaltech to receive daily updates with the latest news from the world of technology.