Massive DDOS attack on cloud infrastructure was repelled
This attack was a type of widespread DDOS attacks in the network layer, which was repelled by the cloud security service of Aberdrak without making the attacked services unavailable. Aberdrak is a provider of cloud services and officially started its activity in 2018 with the unveiling of the CDN content distribution network service.
According to the public relations report of AberDrak, the size of this attack is about 10 times larger than the largest attack on AberDrak’s platform, and it was carried out with the aim of removing the access of two financial websites from AberDrak’s CDN service and from outside Iran.
According to the CEO of this company, the security of Iran’s internal network has decreased due to internet restrictions in recent months and the development of global cyber attacks in recent years.
Aber Drak’s statement reads:
“In the technical report of Aber Drak operation and support team, this massive attack started at 13:15 on Saturday 15th of Bahman and continued until 18:50 on Sunday 16th of Bahman. The nature of this attack is UDP flood and DNS Amplification, and during the attack, a total of 180,000 infected addresses sent 8 billion packets to the edge servers of cloud infrastructure. At the peak of the attack, 350 million requests per second were sent, and about 450 gigabits per second of the bandwidth of the Aberdrak network were allocated to these infected packets. The share of infected Iranian addresses in this attack was 2.5%, and based on this, it can be said with confidence that this attack happened from outside Iran this time.
Aberdrak’s measures to prevent this attack mainly include the distribution of UDP traffic related to the attack on Aberdrak’s Anycast network. Despite the extent and volume of the attack, the cloud security service of Aberdrak was able to reduce the effects of this attack, and as a result, none of the client’s websites from the cloud security service of Aberdrak were out of reach due to this attack. Although intermittent quality drops have been observed in some cloud services during peak attack times, Cloud Druck’s support team has made every effort to reduce these impacts on users’ cloud services by moving services at specific times.
Sina Soltani, CEO of AberDrak, pointing out that AberDrak’s network has shown a good capacity in response to this attack, and the operation and support team will repel this attack and reduce its effects, and cooperate with the data centers abroad where AberDrak is located. It has a site, it is well managed, it believes that with the reduction of security in Iran’s internal network due to internet restrictions in recent months and the development of cyber attacks in the past years at the global level, there are definitely plans to increase the current capacity to respond to cyber attacks, especially inside Iran. It will be necessary.
Last week, after the attack and until the news of the attack was published, the insecure points of the attacked services were also re-evaluated with the checks done on the graphs and the network of overdrak in various pop sites as well as the infrastructure partners and the detection of the type of attacks. And in this regard, increasing the required capacity will soon be included in the infrastructure development operational plan, these measures will include increasing the edge servers in the existing data centers, as well as equipping the current data centers and increasing the capacity of disaster sites in the operation and support department.
Currently, Aberdrak cloud network with 75 pop-sites across the country is providing and developing secure and stable cloud and network services for online businesses. Content distribution network, cloud security and cloud servers, streaming and live broadcasting are among the services of this company.