HTTP/2 Vulnerability Leads to Massive DDoS Attack

Google, Cloudflare and Amazon Web Services (AWS) have jointly unveiled a new zero-day vulnerability dubbed “HTTP/2 Rapid Reset,” reports Nancy Liu.

The vulnerability was exploited to launch the largest distributed denial of service (DDoS) attack recorded to date, Liu says.

“This new series of DDoS attacks reached a peak of 398 million requests per second (rps), and relied on a novel HTTP/2 “Rapid Reset” technique based on stream multiplexing that has affected multiple Internet infrastructure companies. By contrast, last year’s largest-recorded DDoS attack peaked at 46 million rps,” according to Google.

Read more at SDxCentral.

Contact FOSSlife to learn about partnership and sponsorship opportunities.

woman with dark ponytail in front of computer

Comments