Google Cloud resists unprecedented DDoS attack
![Image Europol Head of Operations discusses [dismantling of LockBit]](https://incyber.org//wp-content/uploads/2023/12/incyber-news-water-cybersecurite-cybersecurity-885x690.jpg)
With 398 million requests per second, denial of service attack most significant in history, shattering previous record.
On October 10, 2023, Google Cloud announced it thwarted the most significant DDoS attack ever, with 398 million requests per second (RPS), in August 2023. The previous record dates back to 2022, with an attack of “only” 46 million RPS.
Cybercriminals exploited a vulnerability in the HTTP/2 protocol, making it possible to reset requests to increase the effects of such an attack. The vulnerability allowed them to launch, at the end of August 2023, an unprecedented wave of DDoS attacks against cloud providers, “which is ongoing today,” according to Google Cloud. Cloudfare and AWS contained attacks comprising 201 and 155 million RPS, respectively.
Against the threat, cloud specialists managed to coordinate a cross-industry response. They shared data retrieved from the vulnerability exploitation as well as defense strategies. The partnership made it possible to put together a set of patches and mitigation techniques, which were implemented by most of the major cloud providers across the world.