How Cloudflare blocked a monumental 7.3 Tbps DDoS attack

(blog.cloudflare.com)

265 points methuselah_in | 1 comments | 20 Jun 25 18:34 UTC | HN request time: 0.223s | source

Show context

losthobbies ◴[24 Jun 25 13:52 UTC] No.44366283[source]▶

>>44330585 (OP) #

Dodgy IoT devices will be the end of us all.

replies(1): >>44366592 #

bearjaws ◴[24 Jun 25 14:22 UTC] No.44366592[source]▶

>>44366283 #

It's wild to think with the proliferation of 1gbps fiber internet, even a modern pi board or old desktop is a potential 1gbps bot host.

replies(3): >>44366877 #>>44369703 #>>44376673 #

franga2000 ◴[24 Jun 25 19:02 UTC] No.44369703[source]▶

>>44366592 #

When your IP is found to have been part of a botnet, I think ISPs should just limit you to like 20Mbps for at least a year, so you think twice about buying that 10$ wifi baby monitor next time.

replies(6): >>44370378 #>>44370602 #>>44371379 #>>44380821 #>>44384044 #>>44392890 #

bogdan ◴[24 Jun 25 19:57 UTC] No.44370378[source]▶

>>44369703 #

That's quite harsh. Good thing you're not in charge of making decisions.

replies(2): >>44371577 #>>44372154 #

mschuster91 ◴[24 Jun 25 23:25 UTC] No.44372154[source]▶

>>44370378 #

When you get caught speeding on the road or being a nuisance otherwise you can and will get punished by the courts, including temporary restrictions on your driver license. When you money mule for others, even if you don't know that you actually fell victim to a scam, you get punished as well. When you litter in Singapore, you can get ordered to work community service.

I see no issue in handing out similar punishments in the digital space. The Internet is a shared medium, everyone who connects to it has a responsibility to not be a nuisance to others.

replies(2): >>44372649 #>>44392878 #

1. NoPicklez ◴[27 Jun 25 00:46 UTC] No.44392878[source]▶

>>44372154 #

Bit of a silly take, the difference is that you're the only one control of that car, whereas the item you bought off of Amazon could be controlled by someone else.

If someone broke into my car and drove it into a wall, I highly doubt I'd be found at fault. If someone broke into my IoT device and used it in an attack I highly doubt I should be found at fault.

At the end of the day it is very difficult to impose security management across consumers. You cannot expect the average consumer to pen test their home network and have active vulnerability scanning software to mitigate potential vulnerabilities that result in Botnets.

It is difficult to hold people liable when someone else misappropriates their assets in a way that was not its original intended purpose. When its difficult to capture the perpetrator people start to blame everything else, that doesn't mean we should just shift liability to the buyer who is just simply an easier target to place the blame on than a random unidentified person in another country.

That may sound like a solution but its not the right one. Now someone has the ability to misappropriate your assets from the other side of the world and you become charged with the crime, when all you did was buy a new Samsung TV. Heck knowing that, maybe someone would target you knowing full well you'd be in trouble for it.

↑