Tootfinder

Five Minutes of DDoS Brings down Tor: DDoS Attacks on the Tor Directory Protocol and Mitigations
Zhongtang Luo, Jianting Zhang, Akshat Neerati, Aniket Kate
https://arxiv.org/abs/2509.10755

Five Minutes of DDoS Brings down Tor: DDoS Attacks on the Tor Directory Protocol and Mitigations
The Tor network offers network anonymity to its users by routing their traffic through a sequence of relays. A group of nine directory authorities maintains information about all available relay nodes using a distributed directory protocol. We observe that the current protocol makes a steep synchrony assumption, which makes it vulnerable to natural as well as adversarial non-synchronous communication scenarios over the Internet. In this paper, we show that it is possible to cause a failure in t…

>CloudFlare: *stops 3.8Tbps DDoS attack* :blobnomcookie:
>CloudFlare: *stops 7.3Tbps DDoS attack* :blobnomcookie:
>Also CloudFlare: *went down because of improperly implemented React useEffect* :drool:

Ukraine claims cyberattacks on Russian election systems; Moscow confirms disruptions
https://therecord.media/ukraine-claims-ddos-attack-russian-election-system

Ukraine claims cyberattacks on Russian election systems; Moscow confirms disruptions
Ukraine said it was responsible for disrupting websites related to Russian election infrastructure as voters went to the polls in occupied territories.

New evidence shows the Aisuru botnet, which outpaces all other IoT-based botnets, is drawing most of its firepower from hacked IoT devices hosted on US ISPs (Brian Krebs/Krebs on Security)
https://krebsonsecurity.com/2025/10/ddos-botnet-aisuru-blankets…

Collaborative P4-SDN DDoS Detection and Mitigation with Early-Exit Neural Networks
Ouassim Karrakchou, Alaa Zniber, Anass Sebbar, Mounir Ghogho
https://arxiv.org/abs/2509.12291 …

Collaborative P4-SDN DDoS Detection and Mitigation with Early-Exit Neural Networks
Distributed Denial of Service (DDoS) attacks pose a persistent threat to network security, requiring timely and scalable mitigation strategies. In this paper, we propose a novel collaborative architecture that integrates a P4-programmable data plane with an SDN control plane to enable real-time DDoS detection and response. At the core of our approach is a split early-exit neural network that performs partial inference in the data plane using a quantized Convolutional Neural Network (CNN), while…

Informacyjnie, dostajemy od dwoch dni atak DDoS
Baza idzie na 1200% :(
Staram sie z tym recznie walczyc, ale co chwile nowe polaczenia sie pojawiaja

Ukraine claims cyberattacks on Russian election systems; Moscow confirms disruptions https://therecord.media/ukraine-claims-ddos-attack-russian-election-system

President Krasnov is a Russian asset.
Donald Trump Was Recruited by the KGB Under Codename ‘Krasnov’ Claims Former Soviet Spy Chief
https://www.bylinesupplement.com/p/breaking-crosspost-donald-trump-was

BREAKING CROSSPOST: Donald Trump Was Recruited by the KGB Under Codename ‘Krasnov’ Claims Former Soviet Spy Chief
Byline Times has crashed due to a DDOS attack and the original story blocked: a former senior KGB chief claims Trump was recruited by them in 1987 due to his role as a prominent US businessman

Weekend Reads
* Societal cost of DDoS
https://thegfce.org/news/estimating-the-societal-cost-of-ddos-attacks-a-dual-lens-model-for-national-impact-assessment/
* HTTP/1.1 desync attacks

Estimating The Societal Cost Of DDoS Attacks: A Dual-Lens Model For National Impact Assessment - The GFCE
A new discussion paper, "Estimating the Societal Cost of DDoS Attacks: A Dual-Lens Model for National Impact Assessment," authored by Carlos Alvarez, Director

Stop DDoS Attacking the Research Community with AI-Generated Survey Papers
Jianghao Lin, Rong Shan, Jiachen Zhu, Yunjia Xi, Yong Yu, Weinan Zhang
https://arxiv.org/abs/2510.09686

Stop DDoS Attacking the Research Community with AI-Generated Survey Papers
Survey papers are foundational to the scholarly progress of research communities, offering structured overviews that guide both novices and experts across disciplines. However, the recent surge of AI-generated surveys, especially enabled by large language models (LLMs), has transformed this traditionally labor-intensive genre into a low-effort, high-volume output. While such automation lowers entry barriers, it also introduces a critical threat: the phenomenon we term the "survey paper DDoS att…

A Transformer-Based Approach for DDoS Attack Detection in IoT Networks
Sandipan Dey, Payal Santosh Kate, Vatsala Upadhyay, Abhishek Vaish
https://arxiv.org/abs/2508.10636 https:…

A Transformer-Based Approach for DDoS Attack Detection in IoT Networks
DDoS attacks have become a major threat to the security of IoT devices and can cause severe damage to the network infrastructure. IoT devices suffer from the inherent problem of resource constraints and are therefore susceptible to such resource-exhausting attacks. Traditional methods for detecting DDoS attacks are not efficient enough to cope with the dynamic nature of IoT networks, as well as the scalability of the attacks, diversity of protocols, high volume of traffic, and variability in de…

#Gentoo #Bugzilla is down once again due to #DDoS. Given how much hate we received for putting Anubis in front of the forums, we have no energy to resolve this. Enjoy this wonderful new world.

Kyiv Independent suffers DDoS attack after publishing criticism of anti-corruption rollback: https://benborges.xyz/2025/07/23/kyiv-independent-suffers-ddos-attack.html

Crosslisted article(s) found for cs.CL. https://arxiv.org/list/cs.CL/new
[1/3]:
- Stop DDoS Attacking the Research Community with AI-Generated Survey Papers
Jianghao Lin, Rong Shan, Jiachen Zhu, Yunjia Xi, Yong Yu, Weinan Zhang

Before you head out for the weekend, check out today's Metacurity for the most critical infosec developments you should know, including
--FBI seized domains for the BreachForums hacking forum operated by ShinyHunters,
--Over 100 companies affected by Cl0p attack on Oracle business products,
--All SonicWall firewall users were affected by last month's breach,
--Pro-Russian DDoS player TwoNet now targets critical infrastructure,
--Storm-2657 engages in pira…

FBI seized domains for the BreachForums hacking forum operated by ShinyHunters
100+ companies affected by Cl0p attack on Oracle business products, All SonicWall firewall users were affected by last month's breach, Pro-Russian DDoS player TwoNet now targets CI, Storm-2657 engages in pirate payroll attacks, ClayRat Android malware poses as popular apps, much more

A #Bugzilla #Gentoo znów leży wskutek ataku DDoS. I nie mam już siły się z tym użerać, zwłaszcza po tym, jak nas potraktowano po postawieniu Anubisa przed Forum. Cóż, cieszmy się wspaniałym nowym światem.

Cloudflare hat es wieder geschafft, einen massiven Cyberangriff abzuwehren! 🛡️ Am Montag meldete das Unternehmen auf X einen neuen Rekord bei DDoS-Attacken.
Zum Artikel: https://heise.de/-10630141?wt_mc=sm.red.ho.mastodon.mastodo…

DDoS Attacks in Cloud Computing: Detection and Prevention
Zain Ahmad, Musab Ahmad, Bilal Ahmad
https://arxiv.org/abs/2508.13522 https://arxiv.org/pdf/2508.…

DDoS Attacks in Cloud Computing: Detection and Prevention
DDoS attacks are one of the most prevalent and harmful cybersecurity threats faced by organizations and individuals today. In recent years, the complexity and frequency of DDoS attacks have increased significantly, making it challenging to detect and mitigate them effectively. The study analyzes various types of DDoS attacks, including volumetric, protocol, and application layer attacks, and discusses the characteristics, impact, and potential targets of each type. It also examines the existing…

Packet-Level DDoS Data Augmentation Using Dual-Stream Temporal-Field Diffusion
Gongli Xi, Ye Tian, Yannan Hu, Yuchao Zhang, Yapeng Niu, Xiangyang Gong
https://arxiv.org/abs/2507.20115

Packet-Level DDoS Data Augmentation Using Dual-Stream Temporal-Field Diffusion
In response to Distributed Denial of Service (DDoS) attacks, recent research efforts increasingly rely on Machine Learning (ML)-based solutions, whose effectiveness largely depends on the quality of labeled training datasets. To address the scarcity of such datasets, data augmentation with synthetic traces is often employed. However, current synthetic trace generation methods struggle to capture the complex temporal patterns and spatial distributions exhibited in emerging DDoS attacks. This res…

"This series is the result of careful analysis of UDP stack, to optimize the receive side, especially when under one or several UDP sockets are receiving a DDOS attack.
"I have measured a 47 % increase of throughput when using IPv6 UDP packets with 120 bytes of payload, under DDOS."
https://

There's a point here, but it's really narrower than it looks.
Many individuals can self-host to a level that meets their needs. Not everyone needs anti-DDoS on their web server. Not everyone needs 10GB of space for email accessible from any device anywhere. Almost no one needs a global anycast DNS network. https://

Check out today's Metacurity before you leave for the weekend for the top infosec developments you should know, including
--Anthropic blocks Chinese firms citing national security,
--Texas AG sues PowerSchool over breach,
--Qantas CEO takes a pay hit over breach,
--Orleans Parish Sheriff's Office hit by ransomware,
--Bridgestone confirms cyberattack,
--Cloudflare blocked 11.5 Tbps DDoS attack,
--Threat actors bypass Grok's restrictions,

Anthropic blocks Chinese firms citing national security
Texas AG sues PowerSchool over breach, Qantas CEO takes a pay hit over breach, Orleans Parish Sheriff's Office hit by ransomware, Bridgestone confirms cyberattack, Cloudflare blocked 11.5 Tbps DDoS attack, Threat actors bypass Grok's restrictions, much more

from my link log —
How AI botnet DDoS attacks use compromised end-user devices.
https://jan.wildeboer.net/2025/04/Web-is-Broken-Botnet-Part-2/
saved 2025-05-23

Botnet Part 2: The Web is Broken
I guess you have all heard about the growing problem of AI companies trying to aggressively collect whatever data they can get their hands on to train their models. This has caused an explosive surge in web crawlers relentlessly hitting servers big and small. But who runs these crawlers? Turns out — it could be you!

Forecasting Future DDoS Attacks Using Long Short Term Memory (LSTM) Model
Kong Mun Yeen, Rafidah Md Noor, Wahidah Md Shah, Aslinda Hassan, Muhammad Umair Munir
https://arxiv.org/abs/2509.02076

Forecasting Future DDoS Attacks Using Long Short Term Memory (LSTM) Model
This paper forecasts future Distributed Denial of Service (DDoS) attacks using deep learning models. Although several studies address forecasting DDoS attacks, they remain relatively limited compared to detection-focused research. By studying the current trends and forecasting based on newer and updated datasets, mitigation plans against the attacks can be planned and formulated. The methodology used in this research work conforms to the Cross Industry Standard Process for Data Mining (CRISP-DM…

So low by Linux Mint to DDOS Arch linux just to increase interest in Mint *humor*
#archlinux #linux #linuxmint

Moldova’s pro-EU party wins election amid cyberattacks, Kremlin interference https://therecord.media/moldova-election-pro-eu-party-wins-ddos-incidents-influence-ops

What kind of loser(s) DDoS Arch Linux? Sheesh 🙄
#archlinux

Noch einige der zuletzt hier besonders häufig geteilten #News:
Rekord-Botnet abgeschaltet: 22-Jähriger aus Oregon beschuldigt

TIL about Bright Data, an example of a malware company running an illegal botnet being used by AI DDoS companies to evade blocks by proxying their attack traffic via home computers and smartphones https://lobste.rs/c/hzq0yp

Meta CTO says the technical issues during live demos of its new smart glasses were due to a self-inflicted DDoS and a bug that put Zuckerberg's glasses to sleep (Jess Weatherbed/The Verge)
https://www.theverge.com/news/781730/meta-explains-live-ai-s…

Meta’s failed smart glasses demos had nothing to do with the Wi-Fi
‘We DDoS’d ourselves, basically.‘

The Virginia Community College System (#AS22845) had long been announcing two IPv4 prefixes, a /16 and a /24. Most of the /16 has now been disaggregated.
A variety of explanations could account for such a major change, such as:
1. Operational mistake
2. Prelude to re-allocate or transfer
3. Traffic engineering
4. DDoS mitigation

MixGAN: A Hybrid Semi-Supervised and Generative Approach for DDoS Detection in Cloud-Integrated IoT Networks
Tongxi Wu, Chenwei Xu, Jin Yang
https://arxiv.org/abs/2508.19273 htt…

MixGAN: A Hybrid Semi-Supervised and Generative Approach for DDoS Detection in Cloud-Integrated IoT Networks
The proliferation of cloud-integrated IoT systems has intensified exposure to Distributed Denial of Service (DDoS) attacks due to the expanded attack surface, heterogeneous device behaviors, and limited edge protection. However, DDoS detection in this context remains challenging because of complex traffic dynamics, severe class imbalance, and scarce labeled data. While recent methods have explored solutions to address class imbalance, many still struggle to generalize under limited supervision …

Federal prosecutors charge an Oregon man with operating the Rapper Bot, one of the most powerful DDoS botnets ever seen, which knocked X offline earlier in 2025 (Robert McMillan/Wall Street Journal)
https://www.wsj.com/tech/oregon-man-accuse

GNN-enhanced Traffic Anomaly Detection for Next-Generation SDN-Enabled Consumer Electronics
Guan-Yan Yang, Farn Wang, Kuo-Hui Yeh
https://arxiv.org/abs/2510.07109 https://

GNN-enhanced Traffic Anomaly Detection for Next-Generation SDN-Enabled Consumer Electronics
Consumer electronics (CE) connected to the Internet of Things are susceptible to various attacks, including DDoS and web-based threats, which can compromise their functionality and facilitate remote hijacking. These vulnerabilities allow attackers to exploit CE for broader system attacks while enabling the propagation of malicious code across the CE network, resulting in device failures. Existing deep learning-based traffic anomaly detection systems exhibit high accuracy in traditional network …

Interpretable Anomaly-Based DDoS Detection in AI-RAN with XAI and LLMs
Sotiris Chatzimiltis, Mohammad Shojafar, Mahdi Boloursaz Mashhadi, Rahim Tafazolli
https://arxiv.org/abs/2507.21193

Interpretable Anomaly-Based DDoS Detection in AI-RAN with XAI and LLMs
Next generation Radio Access Networks (RANs) introduce programmability, intelligence, and near real-time control through intelligent controllers, enabling enhanced security within the RAN and across broader 5G/6G infrastructures. This paper presents a comprehensive survey highlighting opportunities, challenges, and research gaps for Large Language Models (LLMs)-assisted explainable (XAI) intrusion detection (IDS) for secure future RAN environments. Motivated by this, we propose an LLM interpret…

So, yeah, we were running out of IPv4 addresses, right?
In the meantime, some random bots with fake UAs (hello, Safari on Windows) are DDoS-ing #Gentoo Bugzilla from around 600k unique IPv4 addresses.
Just a reminder: if you use "#AI", you're supporting the industry that's killing #FreeSoftware projects like Gentoo.
#InternetIsDying #LLM

Feds charge administrator of ‘sophisticated’ DDoS-for-hire botnet https://therecord.media/feds-charge-botnet-admin

Securing Radiation Detection Systems with an Efficient TinyML-Based IDS for Edge Devices
Einstein Rivas Pizarro, Wajiha Zaheer, Li Yang, Khalil El-Khatib, Glenn Harvel
https://arxiv.org/abs/2509.01592 …

Securing Radiation Detection Systems with an Efficient TinyML-Based IDS for Edge Devices
Radiation Detection Systems (RDSs) play a vital role in ensuring public safety across various settings, from nuclear facilities to medical environments. However, these systems are increasingly vulnerable to cyber-attacks such as data injection, man-in-the-middle (MITM) attacks, ICMP floods, botnet attacks, privilege escalation, and distributed denial-of-service (DDoS) attacks. Such threats could compromise the integrity and reliability of radiation measurements, posing significant public health…

Programmable Data Planes for Network Security
Gursimran Singh, H. B. Acharya, Minseok Kwon
https://arxiv.org/abs/2507.22165 https://arxiv.org/pdf/2507.2216…

Programmable Data Planes for Network Security
The emergence of programmable data planes, and particularly switches supporting the P4 language, has transformed network security by enabling customized, line-rate packet processing. These switches, originally intended for flexible forwarding, now play a broader role: detecting and mitigating attacks such as DDoS and spoofing, enforcing next-generation firewall policies, and even supporting in-network cryptography and machine learning. These capabilities are made possible by techniques such as …

Hybrid Deep Learning-Federated Learning Powered Intrusion Detection System for IoT/5G Advanced Edge Computing Network
Rasil Baidar, Sasa Maric, Robert Abbas
https://arxiv.org/abs/2509.15555

Hybrid Deep Learning-Federated Learning Powered Intrusion Detection System for IoT/5G Advanced Edge Computing Network
The exponential expansion of IoT and 5G-Advanced applications has enlarged the attack surface for DDoS, malware, and zero-day intrusions. We propose an intrusion detection system that fuses a convolutional neural network (CNN), a bidirectional LSTM (BiLSTM), and an autoencoder (AE) bottleneck within a privacy-preserving federated learning (FL) framework. The CNN-BiLSTM branch captures local and gated cross-feature interactions, while the AE emphasizes reconstruction-based anomaly sensitivity. T…

Performance Evaluation and Threat Mitigation in Large-scale 5G Core Deployment
Rodrigo Moreira, Larissa F. Rodrigues Moreira, Fl\'avio de Oliveira Silva
https://arxiv.org/abs/2507.17850

Performance Evaluation and Threat Mitigation in Large-scale 5G Core Deployment
The deployment of large-scale software-based 5G core functions presents significant challenges due to their reliance on optimized and intelligent resource provisioning for their services. Many studies have focused on analyzing the impact of resource allocation for complex deployments using mathematical models, queue theories, or even Artificial Intelligence (AI). This paper elucidates the effects of chaotic workloads, generated by Distributed Denial of Service (DDoS) on different Network Functi…

Crosslisted article(s) found for cs.CR. https://arxiv.org/list/cs.CR/new
[1/1]:
- DDoS Attacks in Cloud Computing: Detection and Prevention
Zain Ahmad, Musab Ahmad, Bilal Ahmad