Yesterday, the internet’s favorite code repository, GitHub, was hit by a record 1.35-terabyte-per-second denial-of-service attack—the most powerful recorded so far.
Yet, the website only endured a few minutes of intermittent downtime.
GitHub was able to suffer the attack and keep kicking thanks to Akamai’s DDoS mitigation service.
Because the attacker spoofed GitHub’s IP, the responses flooded toward the site at more than a terabyte per second.
Tod Beardsley, research director at Rapid7, called the attack a “harbinger of the new world of DDoS.” “Unless and until these vulnerable memcached servers are themselves booted off the Internet,” Beardsley said, “they will remain as an irresistibly attractive means for firing packet cannons at any target one might choose, all with no botnet infrastructure required.” The good news is, you can mitigate memcache-based amplification attacks by setting up an incoming rate-limit on port 11211, according to Akamai.