Cloudflare blocks record 7.3 Tbps DDoS attack against hosting provider
Cloudflare says it mitigated a record-breaking distributed denial of service (DDoS) attack in May 2025 that peaked at 7.3 Tbps, targeting a hosting provider. [...]
Stay updated on DoS threats. Explore the latest news and insights on Denial of Service attacks, prevention tips, and cybersecurity strategies.
Search across headline titles and summaries.
Background for this topic.
Denial of service (DoS) is an attack that makes a system, network, or application unavailable by exhausting resources or triggering failure. Floods can consume bandwidth, connection state, CPU, memory, or request-processing capacity; a software defect may instead be exploited to crash a service. A distributed denial-of-service (DDoS) attack generates traffic from many systems, increasing volume and complicating source-based blocking. The material security impact is loss of availability for users and dependent services, including websites, APIs, DNS, and operational systems.
Mitigation should match the bottleneck. Rate limits, request validation, connection protections, caching, and service isolation can reduce application and state-exhaustion attacks; volumetric traffic generally needs filtering or absorption upstream of the network. Monitoring should distinguish abnormal request patterns from ordinary load and alert on saturation, while tested failover, traffic diversion, and restoration procedures limit outage duration. Vulnerability management and timely patching reduce DoS caused by remotely triggerable crashes, but do not replace capacity planning and resilience testing.
Cloudflare says it mitigated a record-breaking distributed denial of service (DDoS) attack in May 2025 that peaked at 7.3 Tbps, targeting a hosting provider. [...]
Cloudflare on Thursday said it autonomously blocked the largest ever distributed denial-of-service (DDoS) attack ever recorded, which hit a peak of 7.3 terabits per second (Tbps)
A vulnerability in the popular Python-based tool for building AI agents and workflows is under active exploitation, allowing for full system compromise, DDoS attacks, and potential loss or theft of sensitive data
Cybersecurity researchers have called attention to a new campaign that's actively exploiting a recently disclosed critical security flaw in Langflow to deliver the Flodrix botnet malware
This blog uncovers an active campaign exploiting CVE-2025-3248 in Langflow versions before 1.3.0 that deploys the Flodrix botnet, enabling threat actors to achieve full system compromise, initiate DDoS attacks, and potentially exfiltrate sensitive data.