Advertisement
Top
image credit: Adobe Stock

HTTP/2 Rapid Reset Zero-Day Vulnerability Exploited to Launch Record DDoS Attacks

October 10, 2023

Via: The Hacker News
Category:

Amazon Web Services (AWS), Cloudflare, and Google on Tuesday said they took steps to mitigate record-breaking distributed denial-of-service (DDoS) attacks that relied on a novel technique called HTTP/2 Rapid Reset.

The layer 7 attacks were detected in late August 2023, the companies said in a coordinated disclosure. The cumulative susceptibility to this attack is being tracked as CVE-2023-44487, and carries a CVSS score of 7.5 out of a maximum of 10.

While the attacks aimed at Google’s cloud infrastructure peaked at 398 million requests per second (RPS), the ones aimed at AWS and Cloudflare exceeded a volume of 155 million and 201 million requests per second (RPS), respectively.

Read More on The Hacker News

RELATED PUBLICATIONS

U.S. Government Releases New AI Security Guidelines for Critical Infrastructure
How cloud cost visibility impacts business and employment
Worrying bug is kicking people out of their Apple ID accounts – here’s everything you need to know

Latest Publications

Windows 11 market share declines as users seemingly shift back to Windows 10
Huawei Watch Fit 3 official images confirm it’s an Apple Watch copycat
U.S. Government Releases New AI Security Guidelines for Critical Infrastructure
How cloud cost visibility impacts business and employment
Blurring Boundaries Between Realities In The Metaverse
Technology Curated Copyright © 2024. All rights reserved