Adding to the complexity of these attacks, Cloudflare highlights that “Botnets that leverage cloud computing platforms and exploit HTTP/2 are able to generate up to x5,000 more force per botnet node.” This capability has allowed them to launch hyper-volumetric DDoS attacks with a relatively small botnet, ranging from 5-20 thousand nodes.
It’s noteworthy that for the second consecutive quarter, DNS-based DDoS attacks were the most common, constituting almost 47% of all attacks. This represents a significant 44% increase compared to the previous quarter. SYN floods held the second position, followed by RST floods, UDP floods, and Mirai attacks.
