Microsoft said that a global outage of its Azure service on Tuesday was exacerbated by “an error” in its response to a distributed denial-of-service (DDoS) attack.
A new flaw in HTTP/2 known as Rapid Reset has enabled threat actors to launch massive DDoS attacks and is believed to affect all modern web servers.
Attackers abused a 'broken TCP implementation' in middleboxes to launch a 'small number' of DDoS attacks against organizations in recent weeks.
The Federal Bureau of Investigation warned in a “private industry notification” last week that attackers are increasingly using amplification techniques in distributed denial-of-service attacks. There has been an uptick in attack attempts since February, the agency’s Cyber Division said in the alert.
Attackers launched a massive distributed denial-of-service against a specific website hosted by a hosting provider in early June. Not only was the 1.44 terabit-per-second DDoS attack the largest Akamai has seen to date, it was also one of the most complex to resolve.