Sign in / up

back to article 'Largest-ever' cloud DDoS attack pummels Azure with 3.64B packets per second

Azure was hit by the "largest-ever" cloud-based distributed denial of service (DDoS) attack, originating from the Aisuru botnet and measuring 15.72 terabits per second (Tbps), according to Microsoft. On October 24, the Windows giant's cloud DDoS protection service auto-detected and mitigated the traffic tsunami - nearly 3.64 …

COMMENTS

Post your comment
House rules Send corrections
Add to 'My topics' unstar *
  1. Oblivium

    Microsoft: “we stopped the biggest attack ever by bad actors, and no one realised - it’s like it never happened. We’re so focussed on quality”.

    Also Microsoft: “we break millions of customer machines each week with our untested and shoddy patches, written in low cost countries by unskilled workers. We sacked all our QA people”.

    Customers: “we’ll take our chances with the viruses, please”.

    32 9 Reply
    1. hoola Silver badge
      Reply Icon

      With you on the first line however the rest is a summary of pretty much any software that is provided now, not just Microsoft.

      6 2 Reply
    2. ajadedcynicaloldfart
      Reply Icon
      Pint

      @Oblivion

      Your first line in quotation marks. I cannot find that line in the article.

      But then, you are new to this forum and eager for "thumbs up". So I am happy to forgive you assuming you buy me one of these...

      1 0 Reply
  2. kneedragon

    Who?

    As an Australian, I would be very keen to know who the target was.

    Speculating here, but I think #1 would be a government department, (say the Dep Social Security or Tax) and #2 would be one of the online betting firms.

    I do note that every source I can find, doesn't mention who got hit. I guess they're all relying on Micro$oft to report that themselves, and they didn't.

    1 0 Reply
    1. Ken Shabby Silver badge
      Reply Icon
      Coat

      Re: Who?

      It’s the Barmy Army trying to stop Aussies buying tickets for the Ashes first test.

      Mine’s the one with 6 pebbles in the pocket.

      20 0 Reply
  3. Anonymous Coward
    Anonymous Coward

    Rather self inflicted

    If you operate world's most unsafe OS for decades without doing anything serious about it because it keep customers subscribed to please, please, please get the next patch (which breaks new things) then I'd say you have literally enabled these criminals yourself.

    A DDoS botnet is comprised of compromised systems, and which OS needs more online bandwidth just to keep up with the patches? Yes, that one.

    So, from an enterprise risk perspective you don't just run the risk of a breach and accompanying costs in recovery and possible fines under DORA and GDPR, you also may find your bandwidth being used when you're colluding with criminal exercises - or being attacked by other victims who are in a similar position.

    Wonderful. Remember, you were warned. It was your choice anyway.

    Meanwhile, the company partly responsible (don't forget IoT) keeps raking it in because they can dodge any responsibility..

    Dammit, I blew my rant quote for the week. Worth it, though.

    2 28 Reply
    1. Thought About IT
      Reply Icon

      Re: Rather self inflicted

      What proportion of those 500,000 routers and cameras do you think were running Windows? Maybe save your next rant until all those unprotected Windows 10 PCs become infected.

      33 0 Reply
      1. Chz
        Reply Icon

        Re: Rather self inflicted

        I'll take you up on that. I would wager a round of drinks that the largest contributors were unpatched Internet of Shit devices and old routers handed out by ISPs. Then probably Windows machines.

        12 4 Reply
      2. Anonymous Coward
        Reply Icon
        Anonymous Coward

        Re: Rather self inflicted

        They are.

        With Windows.

        :)

        2 11 Reply
    2. hoola Silver badge
      Reply Icon

      Re: Rather self inflicted

      Have you understood that the OS was of no interest here? It was a DDOS attack against a SaaS platform. That could have been any SaaS platform or a company that hosted everything in their own datacentre using Linux.

      5 0 Reply
  4. Stuart Elliott

    Is this what caused Cloudflare's outage today

    Payback for Cloudflare targeting them perhaps?

    5 0 Reply
  5. sal II

    in the coming years, once vibe codding by AI becomes the norm, people will mourn the "good" old days of low cost countries coders

    2 0 Reply
    1. this
      Reply Icon

      codding

      Probably a typo or maybe even a freudian slip, but appropriate nevertheless.

      4 0 Reply
  6. Cyberhash

    I will put my hands up, twaz me. Payback for showing border patrol on Sky

    2 0 Reply

  7. This post has been deleted by its author

  8. Dinanziame Silver badge
    IT Angle

    I wonder how much it cost, and what was the goal

    Good it did not work though.

    0 0 Reply

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon