Cloudflare reported a mitigation of 7.3 million distributed denial-of-service (DDoS) attacks within the second quarter of 2025, a notable decrease from the previous quarter’s count of 20.5 million attacks. The company highlighted that in this quarter alone, it addressed over 6,500 hyper-volumetric DDoS attacks, averaging 71 daily.
The first quarter saw a significant spike in attacks, primarily due to an 18-day sustained campaign targeting critical infrastructure. In total, Cloudflare blocked almost 28 million DDoS attacks by mid-2025, surpassing its total from the entire previous year.
One major incident during this period included a staggering DDoS attack that peaked at 7.3 terabits per second, generating 4.8 billion packets per second within just 45 seconds. While high-profile attacks grab attention, many are now being combined with smaller, more targeted probes to exploit vulnerabilities more subtly.
Layer 3/Layer 4 DDoS attacks decreased by 81% from the previous quarter, while HTTP DDoS attacks saw an increase of 9%. A significant proportion of these HTTP attacks originated from identified botnets, with common attack vectors involving DNS, TCP SYN, and UDP protocol flood attacks. The telecommunications sector, along with IT services, gaming, and gambling industries, faced the brunt of these attacks.
Geographically, the most targeted locations included China, Brazil, Germany, India, and several others, with Indonesia, Singapore, and Hong Kong being the top sources of these DDoS attacks. Furthermore, the number of hyper-volumetric DDoS attacks exceeding 100 million packets per second has surged by 592% compared to the last quarter.
An alarming trend noted was a 68% increase in ransom DDoS attacks, where attackers extort organizations by threatening to execute DDoS attacks unless a ransom is paid. Cloudflare observed a vital rise in the size and frequency of these hyper-volumetric DDoS attacks.
Additionally, a new botnet variant named DemonBot has emerged, exploiting unsecured IoT devices and employing various flood attacks. To defend against such threats, Cloudflare advised users to improve their security measures by utilizing antivirus software and domain filtering, emphasizing the need for robust security practices given the vulnerabilities associated with unsecured IoT systems, weak credentials, and outdated firmware.
Welcome to DediRock, your trusted partner in high-performance hosting solutions. At DediRock, we specialize in providing dedicated servers, VPS hosting, and cloud services tailored to meet the unique needs of businesses and individuals alike. Our mission is to deliver reliable, scalable, and secure hosting solutions that empower our clients to achieve their digital goals. With a commitment to exceptional customer support, cutting-edge technology, and robust infrastructure, DediRock stands out as a leader in the hosting industry. Join us and experience the difference that dedicated service and unwavering reliability can make for your online presence. Launch our website.