{"id":78569,"date":"2020-09-30T13:32:21","date_gmt":"2020-09-30T10:32:21","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/the-most-famous-ddos-attacks-in-history\/"},"modified":"2020-09-30T13:32:21","modified_gmt":"2020-09-30T10:32:21","slug":"the-most-famous-ddos-attacks-in-history","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/the-most-famous-ddos-attacks-in-history\/","title":{"rendered":"#The most famous DDoS attacks in history"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a27a044b47aa\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a27a044b47aa\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/the-most-famous-ddos-attacks-in-history\/#_DDoS_attacks_are_getting_bigger_and_more_frequent\" >\u00a0DDoS attacks are getting bigger and more frequent<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/buradabiliyorum.com\/en\/the-most-famous-ddos-attacks-in-history\/#The_AWS_DDoS_attack_in_2020\" >The AWS DDoS attack in 2020<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/buradabiliyorum.com\/en\/the-most-famous-ddos-attacks-in-history\/#The_MiraiKrebs_and_OVH_DDoS_attacks_in_2016\" >The MiraiKrebs and OVH DDoS attacks in 2016<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/buradabiliyorum.com\/en\/the-most-famous-ddos-attacks-in-history\/#The_MiraiDyn_DDoS_attack_in_2016\" >The MiraiDyn DDoS attack in 2016<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/buradabiliyorum.com\/en\/the-most-famous-ddos-attacks-in-history\/#The_six_banks_DDoS_attack_in_2012\" >The six banks DDoS attack in 2012<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/buradabiliyorum.com\/en\/the-most-famous-ddos-attacks-in-history\/#The_GitHub_attack_in_2018\" >The GitHub attack in 2018<\/a><\/li><\/ul><\/nav><\/div>\n<p>&#8220;<strong>#The most famous DDoS attacks in history<\/strong>&#8221;<br \/>\n<img decoding=\"async\" src=\"https:\/\/cdn0.tnwcdn.com\/wp-content\/blogs.dir\/1\/files\/2020\/09\/image-1-7-796x417.png\" \/><\/p>\n<div>\n                            Distributed Denial of Service (DDoS) attacks are now everyday occurrences. Whether you\u2019re a small non-profit or a huge multinational conglomerate, your online services\u2014email, websites, anything that faces the internet\u2014can be slowed or completely stopped by a DDoS attack. Moreover, DDoS attacks are sometimes used to distract your cybersecurity operations while other criminal activity, such as data theft or network infiltration, is underway.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"_DDoS_attacks_are_getting_bigger_and_more_frequent\"><\/span>\u00a0DDoS attacks are getting bigger and more frequent<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>The first known Distributed Denial of Service attack occurred in 1996 when Panix, now one of the oldest internet service providers, was knocked offline for several days by a SYN flood, a technique that has become a classic DDoS attack. Over the next few years DDoS attacks became common and\u202f<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/www.cisco.com\/c\/en\/us\/solutions\/collateral\/executive-perspectives\/annual-internet-report\/white-paper-c11-741490.html\">Cisco predicts that the total number of DDoS attacks will double<\/a>\u202ffrom the 7.9 million seen in 2018 to something over 15 million by 2023.<\/p>\n<p>But it\u2019s not just the number of DDoS attacks that are increasing; as the bad guys are creating ever bigger<span>\u00a0<\/span><a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/bdtechtalks.com\/2016\/01\/28\/all-you-need-to-know-about-botnets\/\">botnets<\/a>\u2014the term for the armies of hacked devices that are used to generate DDoS traffic\u2014the scale of DDoS attacks is also increasing. A Distributed Denial of Service attack of one gigabit per second is enough to knock most organizations off the internet but we\u2019re now seeing peak attack sizes in excess of one terabit per second generated by hundreds of thousands, or even millions, of suborned devices.\u00a0Given that\u202f<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/itic-corp.com\/blog\/2019\/05\/hourly-downtime-costs-rise-86-of-firms-say-one-hour-of-downtime-costs-300000-34-of-companies-say-one-hour-of-downtime-tops-1million\/\">IT services downtime costs companies<\/a>\u202fanywhere from $300,000 to over $1,000,000 per hour, you can see that the financial hit from even a short DDoS attack could seriously damage your bottom line.<\/p>\n<p>So we\u2019re going to take a look at some of the most notable DDoS attacks to date. Our choices include some DDoS attacks that are famous for their sheer scale while others are because of their impact and consequences.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"The_AWS_DDoS_attack_in_2020\"><\/span>The AWS DDoS attack in 2020<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/aws-shield-tlr.s3.amazonaws.com\/2020-Q1_AWS_Shield_TLR.pdf\">Amazon Web Services<\/a>, the 800-pound gorilla of everything cloud computing, was hit by a gigantic DDoS attack in February 2020. This was the most extreme DDoS attack in recent history and it targeted an unidentified AWS customer using a technique called Connectionless Lightweight Directory Access Protocol (CLDAP) Reflection. This technique relies on vulnerable third-party CLDAP servers and amplifies the amount of data sent to the victim\u2019s IP address by 56 to 70 times. The attack lasted for three days and peaked at an astounding 2.3 terabytes per second. While the\u202f<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/www.a10networks.com\/blog\/aws-hit-by-largest-reported-ddos-attack-of-2-3-tbps\/\">disruption caused by the AWS DDoS Attack<\/a>\u202fwas far less severe than it could have been, the sheer scale of the attack and the implications for AWS hosting customers potentially losing revenue and suffering brand damage are significant.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"The_MiraiKrebs_and_OVH_DDoS_attacks_in_2016\"><\/span>The MiraiKrebs and OVH DDoS attacks in 2016<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>On September 20, 2016, the blog of cybersecurity expert\u202f<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/www.a10networks.com\/blog\/investigating-mirai-inside-malware-powers-iot-botnets\/\">Brian Krebs was assaulted by a DDoS attack<\/a>\u202fin\u202f<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/krebsonsecurity.com\/2016\/09\/krebsonsecurity-hit-with-record-ddos\/\">excess of 620 Gbps<\/a>, which at the time, was the largest attack ever seen. Krebs had recorded 269 DDoS attacks since July 2012, but this attack was almost three times bigger than anything his site or, for that matter, the internet had seen before.<\/p>\n<p>The source of the attack was the Mirai botnet, which, at its peak later that year, consisted of more than 600,000 compromised Internet of Things (<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/bdtechtalks.com\/2017\/09\/27\/what-is-iot-internet-of-things\/\">IoT<\/a>) devices such as IP cameras, home routers, and video players. Mirai had been discovered in August that same year but the attack on Krebs\u2019 blog was its first big outing.<\/p>\n<p>The next Mirai attack on September 19 targeted one of the largest European hosting providers, OVH, which hosts roughly 18 million <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">app<\/a>lications for over one million clients. This attack was on a single undisclosed OVH customer and driven by an estimated\u202f<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/krebsonsecurity.com\/2016\/09\/the-democratization-of-censorship\/\">145,000 bots, generating a traffic load<\/a>\u202fof up to\u202f<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/arstechnica.com\/information-technology\/2016\/09\/botnet-of-145k-cameras-reportedly-deliver-internets-biggest-ddos-ever\/\">1.1 terabits per second<\/a>, and lasted about seven days.\u00a0The Mirai botnet was a significant step up in how powerful a DDoS attack could be. The size and sophistication of the Mirai network was unprecedented, as was the scale of the attacks and their focus.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"The_MiraiDyn_DDoS_attack_in_2016\"><\/span>The MiraiDyn DDoS attack in 2016<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Before we discuss the third notable Mirai DDoS attack of 2016, there\u2019s one related event that should be mentioned: On September 30, someone claiming to be the author of the Mirai software released the source code on various hacker forums and the Mirai DDoS platform has been replicated and mutated scores of times since.<\/p>\n<p>On October 21, 2016, Dyn, a major Domain Name Service (DNS) provider, was assaulted by a one-terabit-per-second traffic flood that then became the new record for a DDoS attack. There\u2019s some evidence that\u202f<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/arstechnica.com\/information-technology\/2016\/09\/botnet-of-145k-cameras-reportedly-deliver-internets-biggest-ddos-ever\/\">the DDoS attack may have actually achieved a rate of 1.5 terabits per second<\/a>. The traffic tsunami knocked Dyn\u2019s services offline rendering a number of high-profile websites including GitHub, HBO, <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/social-mediaa\/\" data-internallinksmanager029f6b8e52c=\"1\" title=\"Social Media\" target=\"_blank\" rel=\"noopener\">Twitter<\/a>, Reddit, PayPal, Netflix, and Airbnb, inaccessible. Kyle York, Dyn\u2019s chief strategy officer, reported, \u201cWe observed\u202f<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/www.zdnet.com\/article\/the-dyn-report-what-we-know-so-far-about-the-worlds-biggest-ddos-attack\/\">10s of millions of discrete IP addresses associated with the Mirai botnet<\/a>\u202fthat were part of the attack.\u201d<\/p>\n<p>Mirai supports complex, multi-vector attacks that make mitigation difficult. Even though Mirai was responsible for the biggest assaults up to that time, the most notable thing about the 2016 Mirai attacks was the release of the Mirai source code enabling anyone with modest information <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/technology\/\" data-internallinksmanager029f6b8e52c=\"4\" title=\"Technology\" target=\"_blank\" rel=\"noopener\">technology<\/a> skills to create a botnet and mount a Distributed Denial of Service attack without much effort.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"The_six_banks_DDoS_attack_in_2012\"><\/span>The six banks DDoS attack in 2012<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>On March 12, 2012,\u202f<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/www.cio.com\/article\/2389721\/ddos-attacks-against-us-banks-peaked-at-60-gbps.html\">six U.S. banks were targeted by a wave of DDoS attacks<\/a>\u2014Bank of America, JPMorgan Chase, U.S. Bank, Citigroup, Wells Fargo, and PNC Bank. The attacks were carried out by hundreds of hijacked servers from a botnet called Brobot, with each attack generating over 60 gigabits of DDoS attack traffic per second.<\/p>\n<p>At the time, these attacks were unique in their persistence: Rather than trying to execute one attack and then backing down, the perpetrators barraged their targets with a multitude of attack methods in order to find one that worked. So, even if a bank was equipped to deal with a few types of DDoS attacks, they were helpless against other types of attack.<\/p>\n<p>The most remarkable aspect of the bank attacks in 2012 was that the attacks were allegedly carried out by the\u202fIzz ad-Din al-Qassam Brigades, the military wing of the Palestinian Hamas organization. Moreover, the attacks had a huge impact on the affected banks in terms of revenue, mitigation expenses, customer service issues, and the banks\u2019 branding and image.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"The_GitHub_attack_in_2018\"><\/span>The GitHub attack in 2018<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>On Feb. 28, 2018, GitHub\u2014a platform for software developers\u2014was hit with a\u202f<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/www.wired.com\/story\/github-ddos-memcached\/\">DDoS attack that clocked in at 1.35 terabits per second<\/a>\u202fand lasted for roughly 20 minutes.\u202f<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/thehackernews.com\/2018\/03\/biggest-ddos-attack-github.html\">According to GitHub<\/a>, the traffic was traced back to \u201c<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/www.infosecurity-magazine.com\/news\/github-35tbps-memcached-ddos\/\">over a thousand different autonomous systems (ASNs) across tens of thousands of unique endpoints.<\/a>\u201d<\/p>\n<p>Even though GitHub was well prepared for a DDoS attack their defenses were overwhelmed\u2014they simply had no way of knowing that an attack of this scale would be launched.<\/p>\n<p>The GitHub DDoS attack was notable for its scale and the fact that the attack was staged by exploiting a standard command of Memcached, a database caching system for speeding up websites and networks. The Memcached DDoS attack technique is particularly effective as it provides an amplification factor\u2014the ratio of the attacker\u2019s request size to the amount of\u202f<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/blog.cloudflare.com\/memcrashed-major-amplification-attacks-from-port-11211\/\"><em>DDoS attack traffic generated\u2014of up to a staggering 51,200 times<\/em><\/a>.<em>\u00a0<\/em><\/p>\n<p>And that concludes our top five line up. It is a sobering insight into just how powerful, persistent and disruptive DDoS attacks have become.<\/p>\n<p><i><span style=\"font-weight: 400;\">This article was originally published by Adrian Taylor on <\/span><\/i><a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/bdtechtalks.com\/\"><i><span style=\"font-weight: 400;\">TechTalks<\/span><\/i><\/a><i><span style=\"font-weight: 400;\">, a publication that examines trends in technology, how they affect the way we live and do business, and the problems they solve. But we also discuss the evil side of technology, the darker implications of new tech and what we need to look out for. You can read the original article <a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/bdtechtalks.com\/2020\/09\/19\/top-5-ddos-attacks-in-history\/\">here<\/a>.\u00a0<\/span><\/i><\/p>\n<\/p><\/div>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong>\n<\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more like this article, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/technology\/\" target=\"_blank\" rel=\"noopener noreferrer\">Technology category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/thenextweb.com\/syndication\/2020\/09\/30\/the-most-famous-ddos-attacks-in-history\/\" target=\"_blank\" rel=\"noopener noreferrer\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;#The most famous DDoS attacks in history&#8221; Distributed Denial of Service (DDoS) attacks are now everyday occurrences. Whether you\u2019re a small non-profit or a huge multinational conglomerate, your online services\u2014email, websites, anything that faces the internet\u2014can be slowed or completely stopped by a DDoS attack. Moreover, DDoS attacks are sometimes used to distract your cybersecurity&#8230;<\/p>\n","protected":false},"author":1,"featured_media":78570,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/img-cdn.tnwcdn.com\/image\/tnw?filter_last=1&fit=1280,640&url=https:\/\/cdn0.tnwcdn.com\/wp-content\/blogs.dir\/1\/files\/2020\/09\/image-1-7.png&signature=9e1a2d2cfa5ae8fee1ade3a8668634d7","fifu_image_alt":"","footnotes":""},"categories":[18],"tags":[73636,73634,73633,73637,48,73635,70759],"class_list":["post-78569","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology","tag-cloud-computing","tag-ddos","tag-denial-of-service-attack","tag-information-technology","tag-internet","tag-list-of-ios-devices","tag-tech"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/78569","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=78569"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/78569\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/78570"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=78569"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=78569"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=78569"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}