DDoS - Page 1 - Cloudflare Blog

Reflections on reflection (attacks)

Published on May 24th, 2017 6:16PM by Marek Majkowski.

Recently Akamai published an article about CLDAP reflection attacks. This got us thinking. We saw attacks from Connectionless LDAP servers back in November 2016 but totally ignored them because our systems were automatically dropping the attack traffic without any impact. CC BY 2.0 image by RageZ We decided to

Introducing Cloudflare Orbit: A Private Network for IoT Devices

Published on April 27th, 2017 1:00PM by Dani Grant.

In October, we wrote about a 1.75M rps DDoS attack we mitigated on our network, launched by 52,467 unique IP’s, mostly hacked CCTV cameras. We continued to see more IoT devices in DDoS attacks, and so we started to put together a security solution to protect the

Cloudflare Rate Limiting - Insight, Control, and Mitigation against Layer 7 DDoS Attacks

Published on April 13th, 2017 8:34PM by Timothy Fong.

Today, Cloudflare is extending its Rate Limiting service by allowing any of our customers to sign up. Our Enterprise customers have enjoyed the benefits of Cloudflare’s Rate Limiting offering for the past several months. As part of our mission to build a better internet, we believe that everyone should

Want to see your DNS analytics? We have a Grafana plugin for that

Published on February 14th, 2017 6:04PM by Marek Vavruša.

Curious where your DNS traffic is coming from, how much DNS traffic is on your domain, and what records people are querying for that don’t exist? We now have a Grafana plugin for you. Grafana is an open source data visualization tool that you can use to integrate data

DDoS Ransom: An Offer You Can Refuse

Published on February 6th, 2017 9:43PM by Justin Paine.

Cloudflare has covered DDoS ransom groups several times in the past. First, we reported on the copycat group claiming to be the Armada Collective and then not too long afterwards, we covered the "new" Lizard Squad. While in both cases the groups made threats that were ultimately empty, these types

TLD glue sticks around too long

Published on December 5th, 2016 1:54PM by Marek Majkowski.

Recent headline grabbing DDoS attacks provoked heated debates in the DNS community. Everyone has strong opinions on how to harden DNS to avoid downtime in the future. Is it better to use a single DNS provider or multiple? What DNS TTL values are best? Does DNSSEC make you more or

The Daily DDoS: Ten Days of Massive Attacks

Published on December 2nd, 2016 1:21PM by John Graham-Cumming.

Back in March my colleague Marek wrote about a Winter of Whopping Weekend DDoS Attacks where we were seeing 400Gbps attacks occurring mostly at the weekends. We speculated that attackers were busy with something else during the week. This winter we've seen a new pattern, and attackers aren't taking the

The Internet is Hostile: Building a More Resilient Network

Published on November 8th, 2016 6:56PM by Jérôme Fleury.

In a recent post we discussed how we have been adding resilience to our network. The strength of the Internet is its ability to interconnect all sorts of networks — big data centers, e-commerce websites at small hosting companies, Internet Service Providers (ISP), and Content Delivery Networks (CDN) — just to name