The other day Google reported that in June of this year the search engine faced a large-scale DDoS attack. It was repelled, but the company is concerned about the growing activity of hackers.
Google said it blocked the largest HTTPS-based denial of service (DDoS) attack in history in June, with the intensity reaching 46 million requests per second.
By comparison, that’s about 76% more than the previous record-breaking DDoS attack that Cloudflare had prevented earlier that month.
As Google employees Emil Keener and Satya Konduru explain: “It’s like getting all the daily requests to Wikipedia (one of the 10 most visited websites in the world) in just 10 seconds.”
The attack began around 09:45 Pacific Time (16:45 GMT) with more than 10,000 requests per second. Two minutes after that, it peaked at 46 million requests per second. By that time, Cloud Armor’s adaptive protection service had already detected the attack.
After that, the attack subsided and ended at 10:54 a.m. Pacific Time (5:54 p.m. GMT).
This attack had 5,256 outgoing IP addresses from 132 countries.
HTTPS requests, rather than HTTP, were still used on June 1. HTTPS-based attacks are more expensive because it takes more computing resources to establish a secure TLS connection.
About 22% (1,169) of the output IP addresses matched Tor’s output nodes. However, according to Google security researchers, the volume of requests from them accounted for only 3% of the traffic.