22.2 Terabit-Per-Second DDoS Attack Establishes New Global Record

Cloudflare announced it had autonomously mitigated the largest distributed denial-of-service (DDoS) attack ever recorded, a hyper-volumetric assault that peaked at an unprecedented 22.2 terabits per second (Tbps) and 10.6 billion packets per second (Bpps).

This event more than doubles the size of the previous record-setting UDP flood, which reached 11.5 Tbps and lasted 35 seconds.

The sheer magnitude and speed of the latest attack underscore a dangerous escalation in the capabilities of malicious actors and their botnets, raising urgent questions about the resilience of internet infrastructure and the role of automation in modern cybersecurity defenses.

Record-Breaking Scale and “Hit-and-Run” Tactics

Unlike traditional sustained DDoS campaigns that can stretch over hours or days, the 22.2 Tbps assault unfolded in a rapid “hit-and-run” style, lasting only about 40 seconds.

Attackers leveraged a multi-vector strategy combining volumetric flooding, protocol misuse, and application-layer noise to overwhelm defenses before manual interventions could take effect.

Hyper-volumetric floods of this intensity rely on massive botnets comprised of compromised servers and Internet-of-Things devices coordinated to generate vast surges of malicious traffic.

The goal is to saturate network pipes, consume server resources, and disrupt access for legitimate users, all within a narrow time window that makes real-time mitigation indispensable.

Cloudflare reports that its global network detected and absorbed the entire torrent of malicious traffic without any human intervention.

By leveraging machine-learning-driven anomaly detection alongside automated routing and filtering mechanisms, the company’s platform was able to scrub the attack at the edge, close to its origin points.

This contrasts sharply with legacy scrubbing centers, which typically require manual traffic redirects and human-led analyses—processes too sluggish to neutralize storms measured in tens of terabits per second.

Cloudflare’s vast distributed architecture provided the capacity headroom needed to soak up the influx while ensuring downstream customers experienced no degradation in service availability or performance.

Implications for Security Strategy and Infrastructure

The emergence of hyper-volumetric DDoS events of such scale demands a fundamental shift in defensive strategies.

Organizations must ask whether their current security providers have the network bandwidth and fully automated orchestration to withstand assaults operating at machine speed.

Traditional appliances and on-premises solutions simply cannot match the parallelization and global distribution that cloud-based platforms provide.

As attackers refine tooling and expand botnet footprints, these “flash” DDoS tactics are expected to proliferate, targeting both high-value enterprises and critical infrastructure.

Only by embracing automated, edge-delivered defenses backed by virtually limitless capacity can businesses ensure continuity in the face of the next record-shattering onslaught.

Find this Story Interesting! Follow us on Google News, LinkedIn, and X to Get More Instant Updates

The post 22.2 Terabit-Per-Second DDoS Attack Establishes New Global Record appeared first on Cyber Security News.