Vụ tấn công mạng toàn cầu: Cloudflare đấu tranh chống lại cuộc tấn công DDoS chưa từng có

In recent weeks, Cloudflare has been battling a massive wave of Distributed Denial of Service (DDoS) attacks that have swept across the globe. These cyber onslaughts are targeting numerous critical sectors and are being carried out using a vast network of compromised devices, including ASUS routers. While Cloudflare has managed to mitigate much of the disruption, the offensive continues unabated.

Unprecedented DDoS Attacks

Since the beginning of September 2024, the scale of these DDoS attacks has reached levels rarely seen before. Cloudflare, a leading web infrastructure and security company, reported detecting assaults exceeding 2 billion packets per second (Bpps) and 3 terabits per second (Tbps). To put that into perspective, these figures indicate an enormous frequency and volume of data aimed at overwhelming targeted servers.

In fact, Cloudflare noted that the largest attack peaked at 3.8 Tbps, marking it as “the largest ever publicly disclosed by an organization.” Such staggering numbers highlight the sheer magnitude of the threat.

Moreover, the company has been combating numerous attacks targeting layers L3 and L4 of the OSI (Open Systems Interconnection) model—the critical layers responsible for routing data packets from one point to another in a network. According to Cloudflare, “The scale and frequency of these attacks are unprecedented.”

No One Is Spared

These cyberattacks have not discriminated, affecting a wide array of industries. Many of Cloudflare’s clients in essential sectors such as financial services, internet service providers, and telecommunications have found themselves in the crosshairs. Thankfully, Cloudflare’s robust protection systems have helped lessen the impact, shielding clients from the full brunt of the attacks.

It’s both unsettling and somewhat unsurprising that these offensives are being carried out using compromised devices that hackers have infiltrated ahead of time. Researchers at Cloudflare revealed that a variety of equipment has been co-opted to orchestrate these DDoS attacks. Everything from routers, switches, and Wi-Fi access points manufactured by companies like MicroTik, to digital video recorders (DVRs) and web servers, have been exploited to “work in tandem and flood the target” with malicious traffic.

These compromised devices form what’s known as botnets—networks of hijacked devices controlled remotely by cybercriminals. Often, the owners of these gadgets remain blissfully unaware that their hardware is being used for nefarious purposes.

Hacked ASUS Routers Fueling the Attacks

Adding another layer to this complex situation, Cloudflare pointed out that “high-bandwidth attacks” are being launched from compromised ASUS home routers. The company suspects that these routers were hacked due to a recently discovered security vulnerability. Identified by researchers at Censys, this flaw allows “an unauthenticated remote attacker to bypass authentication and connect to the device.” Alarmingly, over 150,000 routers are affected, spanning locations in the United States, Hong Kong, and China.

The origins of these DDoS attacks are global, but a significant number have been traced back to countries like Vietnam, Russia, Brazil, Spain, and the United States. Cloudflare’s statements suggest that this wave of attacks is ongoing, underscoring the persistent nature of cyber threats in our interconnected world.

As someone who relies heavily on the internet for both work and leisure, these developments are both fascinating and concerning. It serves as a stark reminder of the importance of securing our personal devices—not just for our own protection, but to prevent them from becoming unwitting participants in large-scale cyberattacks.

Cybersecurity experts often emphasize the need for regular software updates and strong passwords. If you own an ASUS router, it might be wise to check for any available firmware updates or consult with the manufacturer to ensure your device isn’t part of the problem.

Cloudflare’s efforts to combat these unprecedented attacks highlight the critical role that cybersecurity firms play in safeguarding the infrastructure we all depend on. While they have managed to mitigate much of the potential disruption, the continuing nature of the assault shows that vigilance is more important than ever.

My name is Noah and I’m a dedicated member of the “Jason Deegan” team. With my passion for technology, I strive to bring you the latest and most exciting news in the world of high-tech.