This Is Why You Patch Your Things!
Cloudflare has blocked a month long DDoS attack which peaked at 3.8 terabits per second, simultaneously aimed at a variety of financial services, internet, and telecommunications organizations. After all, if you have that much bandwidth, why go after a single target? This beats the previous record holder for awfulness, a mere 3.47 Tbps that was aimed at an Azure instance in Asia and which was eventually blocked by Microsoft. The new record holder spammed a specific UDP port with a huge amount of garbage and slowed networks to a crawl when it managed to get some traffic through.
If you are wondering how it happened, it is because companies and some users refuse to keep their IoT devices up to date. Indeed many companies get bored and simply stop supporting older devices, regardless of how many are still being used. The devices used in this attack ranged from Asus home routers to Mikrotik systems to DVRs, with the occasional insecure web server tossed in. The infected devices were mostly located in Russia, and Vietnam but the U.S made up almost 10%.
Patch all the things, now!