The Gaming Boardroom

Cloudflare Holds Back the Tide on 11.5Tbps DDoS Attack

Steve Tyler Leave a comment

Cloudflare Holds Back the Tide on 11.5Tbps DDoS Attack

Summary

Cloudflare reports it automatically mitigated hundreds of hyper-volumetric distributed denial-of-service (DDoS) attacks in recent weeks, including a UDP flood that peaked at about 11.5 terabits per second (Tbps). The 11.5Tbps event lasted roughly 35 seconds and originated from a mix of IoT devices and cloud providers; Google Cloud was one identified source but not the majority.

Key Points

  • Cloudflare’s systems blocked hundreds of large DDoS events; the largest reported peaks were 5.1 billion packets per second (Bpps) and 11.5Tbps.
  • The 11.5Tbps attack was a short-lived UDP flood (~35 seconds), illustrating how enormous volume can be delivered in a very brief window.
  • Previous month-on-month records have risen quickly — Cloudflare previously reported a 7.3Tbps attack that delivered 37.4 terabytes in 45 seconds.
  • Researchers caution that peak size alone is misleading: persistence, multivector complexity and user-impact matter more than headline Tbps figures.
  • True resilience requires end-to-end planning that pairs capacity with intelligent mitigation to preserve user experience during attacks.

Content Summary

The article describes Cloudflare’s automatic mitigation of an 11.5Tbps UDP flood that lasted about 35 seconds and involved traffic from IoT and various cloud providers. Cloudflare said it has been stopping hundreds of hyper-volumetric attacks recently. The piece places this event in context by comparing it to prior large attacks (notably a 7.3Tbps event), and quotes industry voices who argue that attack complexity and impact on users are more meaningful metrics than peak bandwidth alone. Cloudflare intends to publish a fuller report soon.

Context and Relevance

Volumetric DDoS attacks continue to grow in scale, driven by botnets of insecure IoT devices and abuse of cloud infrastructure. For network operators, security teams and service providers this trend raises two priorities: ensuring sufficient capacity to absorb large floods, and deploying intelligent, rapid mitigation that preserves user-facing services. The story highlights both the escalating capability of attackers and the operational strain on defences, making it directly relevant to anyone responsible for availability and incident planning.

Why should I read this?

Because if you manage networks, websites or APIs, you need a quick heads-up: attackers are pushing record-sized floods and they can hit in a blink. This short read tells you how big the latest wave was, why raw Tbps numbers can be deceptive, and why planning for both capacity and smarter mitigation is what actually keeps customers online. Consider it time saved — the headline, context and takeaways in one place.

Source

Source: https://www.darkreading.com/cyberattacks-data-breaches/cloudflare-ddos-attacks-new-heights

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Copyright © 2026 The Gaming Boardroom. All rights reserved.