Cloudflare Neutralizes Record-Breaking 22.2 Tbps DDoS Attack
Cloudflare has successfully mitigated an unprecedented distributed denial-of-service (DDoS) attack that reached a peak of 22.2 terabits per second (Tbps) and 10.6 billion packets per second (pps). This hyper-volumetric attack, although lasting only 40 seconds, significantly surpassed previous records, highlighting the escalating arms race in the digital security landscape. The company detected and automatically mitigated the attack on September 24, 2025.
Details of the Attack
The attack originated from over 404,000 IP addresses spread across 14 autonomous systems. The method employed was an “UDP carpet bomb,” which simultaneously targeted tens of thousands of ports. Cloudflare suspects the AISURU botnet was responsible for the attack. This type of attack is particularly concerning for organizations in Africa, where robust cybersecurity infrastructure may be less prevalent, making them potentially more vulnerable to such high-volume assaults.
The brief but intense nature of this attack underscores a growing trend: the increasing frequency and severity of hyper-volumetric DDoS attacks. This necessitates the deployment of fully automated and massively distributed defense systems capable of responding in real-time. Cloudflare’s successful neutralization of this record-breaking attack demonstrates the importance of proactive and adaptive security measures in the face of ever-evolving cyber threats.
Keywords
Related Keywords: Cloudflare, DDoS attack, 222 Tbps, record DDoS attack, cyber attack, internet security, network security, mitigation, Tbps attack, volumetric attack
