Transcript
Mike Matchett: So the network in this case you're doing some sort of DNS overwhelming or something like that, right? You're flooding and flooding bandwidth and that on the network side versus just hitting the web server itself. Omer Yoachimik: Yeah, exactly. So you can do a bunch of things ranging from attacking the DNS servers, uh, to, uh, just trying to send a lot of UDP packets to or, um, overload the inline appliances, um, or even just clog the internet link. Right. So if you have a, um, you know, a one gigabit per second link, if I send you 1.1, assuming you don't have, uh, kind of surges allowed, um, you're offline, that's it. Your users can't, um, can't really get to you. Mike Matchett: All right. And now technology's been coming along. Networks have gotten bigger and bigger and faster and faster. Uh, but I think you mentioned earlier the attack size is growing, too. So how is that how our tax growing as fast as network capabilities and bandwidth? Or is there is one outracing the other at this point? Omer Yoachimik: So at this point, what we've seen is that in 2023, the sizes of attacks, uh, grew exponentially. Uh, this was made possible due to a, um, a vulnerability in the implementation of Http two. Uh, this was something that affected the wider internet community. Um, and so attackers or threat actors identified this vulnerability and, um, understood how to exploit it to launch very large attacks. And so if you look at, you know, 2019, four years ago, um. We're talking about 3 million requests per second, which was the largest attack, um, that we saw that year. And that was attributed to a state level, uh, actor. Um, and it had over a million bots in that botnet. So, you know, very rough calculation. Each bot delivered three requests per second. Um, but now if you zoom, if you kind of fast forward to 2023, the largest attack was 201 million requests per second, which is insane. That increased by 773% compared to the previous year, and that botnet was only around 50,000 devices. So, um, we're we're talking about like each, each, uh, bot here is approximately 5000 times stronger. So the bot.
