{"id":321494,"date":"2022-08-19T11:51:26","date_gmt":"2022-08-19T13:51:26","guid":{"rendered":"https:\/\/teknomers.com\/fr\/google-cloud-bloque-une-attaque-ddos-record-de-46-millions-de-requetes-par-seconde\/"},"modified":"2022-08-19T11:51:27","modified_gmt":"2022-08-19T13:51:27","slug":"google-cloud-bloque-une-attaque-ddos-record-de-46-millions-de-requetes-par-seconde","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/google-cloud-bloque-une-attaque-ddos-record-de-46-millions-de-requetes-par-seconde\/","title":{"rendered":"Google Cloud bloque une attaque DDoS record de 46 millions de requ\u00eates par seconde"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both\"><\/div>\n<p>La division cloud de Google a r\u00e9v\u00e9l\u00e9 jeudi qu&#8217;elle avait att\u00e9nu\u00e9 une s\u00e9rie d&#8217;attaques par d\u00e9ni de service distribu\u00e9 (DDoS) HTTPS qui ont culmin\u00e9 \u00e0 46 millions de requ\u00eates par seconde (RPS), ce qui en fait la plus importante jamais enregistr\u00e9e \u00e0 ce jour.<\/p>\n<p>L&#8217;attaque, qui s&#8217;est produite le 1er juin, ciblant un client Google Cloud Armor anonyme, est 76 % plus importante que l&#8217;attaque DDoS de 26 millions de RPS abrog\u00e9e par Cloudflare au d\u00e9but du mois de juin.<\/p>\n<div class=\"ad_two clear\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/strike-d\" target=\"_blank\" title=\"DevOps backupy\"><img decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" loading=\"lazy\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/08\/La-nouvelle-vulnerabilite-Amazon-Ring-aurait-pu-exposer-tous-vos.png\" width=\"300\" height=\"250\" \/><\/a><\/div>\n<p>&#8220;Pour donner une id\u00e9e de l&#8217;ampleur de l&#8217;attaque, c&#8217;est comme recevoir toutes les requ\u00eates quotidiennes adress\u00e9es \u00e0 Wikip\u00e9dia (l&#8217;un des 10\u00a0sites Web les plus visit\u00e9s au monde) en seulement 10\u00a0secondes&#8221;, ont d\u00e9clar\u00e9 Emil Kiner et Satya Konduru de Google Cloud. <a rel=\"nofollow noopener\" href=\"https:\/\/cloud.google.com\/blog\/products\/identity-security\/how-google-cloud-blocked-largest-layer-7-ddos-attack-at-46-million-rps\" target=\"_blank\">a dit<\/a>.<\/p>\n<p>Il aurait commenc\u00e9 vers 9 h 45 PT avec 10 000 RPS, avant de passer \u00e0 100 000 RPS huit minutes plus tard et d&#8217;augmenter encore en deux minutes pour atteindre un sommet de 46 millions de RPS \u00e0 10 h 18 PT.  Au total, l&#8217;assaut DDoS a dur\u00e9 au total 69 minutes.<\/p>\n<div class=\"separator\" style=\"clear: both\"><img decoding=\"async\" alt=\"\" border=\"0\" data-original-height=\"347\" data-original-width=\"728\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/08\/1660917086_293_Google-Cloud-bloque-une-attaque-DDoS-record-de-46-millions.jpg\" \/><\/div>\n<p>Google a d\u00e9clar\u00e9 que le volume de trafic \u00e9tonnamment \u00e9lev\u00e9 provenait de 5 256 adresses IP situ\u00e9es dans 132 pays, le Br\u00e9sil, l&#8217;Inde, la Russie et l&#8217;Indon\u00e9sie repr\u00e9sentant \u00e0 eux seuls 31 % de toutes les demandes d&#8217;attaque.<\/p>\n<p>22\u00a0% des adresses IP (1\u00a0169) correspondaient \u00e0 des n\u0153uds de sortie TOR, mais n&#8217;\u00e9taient responsables que de 3\u00a0% du trafic d&#8217;attaque.<\/p>\n<div class=\"ad_two clear\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/crowd-mid-d\" target=\"_blank\" title=\"CyberSecurity\"><img decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" loading=\"lazy\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/08\/Google-Cloud-bloque-une-attaque-DDoS-record-de-46-millions.png\" width=\"728\" height=\"90\" \/><\/a><\/div>\n<p>&#8220;L&#8217;attaque a exploit\u00e9 des requ\u00eates crypt\u00e9es (HTTPS) qui auraient n\u00e9cessit\u00e9 des ressources informatiques suppl\u00e9mentaires pour \u00eatre g\u00e9n\u00e9r\u00e9es&#8221;, a not\u00e9 la soci\u00e9t\u00e9.  &#8220;La r\u00e9partition g\u00e9ographique et les types de services non s\u00e9curis\u00e9s exploit\u00e9s pour g\u00e9n\u00e9rer l&#8217;attaque correspondent \u00e0 la famille d&#8217;attaques M\u0113ris.&#8221;<\/p>\n<p>En septembre 2021, le botnet M\u0113ris \u00e9tait li\u00e9 \u00e0 une attaque DDoS contre le g\u00e9ant russe de l&#8217;Internet Yandex qui a culmin\u00e9 \u00e0 21,8 millions de RPS.  Certaines parties de l&#8217;infrastructure du botnet \u00e9taient <a rel=\"nofollow noopener\" href=\"https:\/\/rt-solar.ru\/events\/news\/2343\/\" target=\"_blank\">englouti<\/a> fin septembre 2021.<\/p>\n<p><\/p>\n<\/div>\n<p><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2022\/08\/google-cloud-blocks-record-ddos-attack.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>La division cloud de Google a r\u00e9v\u00e9l\u00e9 jeudi qu&#8217;elle avait att\u00e9nu\u00e9 une s\u00e9rie d&#8217;attaques par d\u00e9ni de service distribu\u00e9 (DDoS) HTTPS qui ont culmin\u00e9 \u00e0 46 millions de requ\u00eates par seconde (RPS), ce qui en fait la plus importante jamais enregistr\u00e9e \u00e0 ce jour. L&#8217;attaque, qui s&#8217;est produite le 1er juin, ciblant un client Google [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":321495,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[1933,6491,22780,4168,4158,4165,4161,2890,7755,4157,4159,4171,4170,4167,1610,4160,4163,4162,164,4282,57349,9079,4172,4169,196,4166,4164],"class_list":["post-321494","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-attaque","tag-bloque","tag-cloud","tag-comment-pirater","tag-cyber-actualites","tag-cyber-attaques","tag-cyber-mises-a-jour","tag-ddos","tag-google","tag-lactualite-de-la-cybersecurite","tag-lactualite-de-la-cybersecurite-aujourdhui","tag-lactualite-des-hackers","tag-la-securite-des-informations","tag-logiciel-malveillant-de-ransomware","tag-millions","tag-mises-a-jour-de-la-cybersecurite","tag-nouvelles-de-piratage","tag-nouvelles-de-pirates","tag-par","tag-record","tag-requetes","tag-seconde","tag-securite-informatique","tag-securite-internet","tag-une","tag-violation-de-donnees","tag-vulnerabilite-logicielle"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/321494","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=321494"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/321494\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/321495"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=321494"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=321494"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=321494"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}