Once-theoretical attack vector appears fully-formed on CloudFlare's doorstep
CloudFlare has turned up an unusual form of denial-of-service attack: mobile advertisements that are pumping out around 275,000 HTTP requests per second.
The cloud outfit didn't name the victim, but said the Layer 7 HTTP floods hitting the target is the latest example of a once-theoretical attack turning up in the real world.
"Browser-based L7 floods have been rumored as a theoretical threat for a long time," Majkowski says.
"Since an efficient distribution vector is crucial in issuing large floods, up until now I haven't seen many sizable browser-based floods."
CloudFlare copped 4.5 billion requests in a day of attacks against a customer domain, originating from around 650,000 unique IPs addresses.
Virtually all traffic came from mobile devices in China.
"Attacks like this form a new trend," he says. "They present a great danger in the internet [since] defending against this type of flood is not easy for small website operators."
The attack follows China's so-called Great Cannon that the University of Toronto found in April was hijacking web traffic entering the Middle Kingdom to overpower sites critical of the authoritarian state.
- Black Hat
- Common Vulnerability Scoring System
- Cybersecurity and Infrastructure Security Agency
- Cybersecurity Information Sharing Act
- Data Breach
- Data Protection
- Data Theft
- Digital certificate
- Identity Theft
- Kenna Security
- Palo Alto Networks
- Trusted Platform Module
- Zero trust