Azure Mitigates Record 15.72 Tbps DDoS Attack, Largest Ever in Cloud
By
speckx
Reliable enough to start your morning with. Toast it again tomorrow.
Summary
Microsoft Azure successfully defended against the largest DDoS attack ever observed in the cloud on October 24, 2025, automatically mitigating a 15.72 Tbps multi-vector attack targeting a single endpoint in Australia. The attack originated from the Aisuru botnet, a Turbo Mirai-class IoT botnet exploiting compromised home routers and cameras, and involved UDP floods from over 500,000 source IPs. Azure's globally distributed DDoS Protection infrastructure filtered malicious traffic while maintaining service availability. The article warns that as internet speeds and IoT device power increase, attack sizes will continue to grow, and recommends proactive DDoS protection measures.
Key quotes
· 5 pulledOn October 24, 2025, Azure DDOS Protection automatically detected and mitigated a multi-vector DDoS attack measuring 15.72 Tbps and nearly 3.64 billion packets per second (pps).
This was the largest DDoS attack ever observed in the cloud and it targeted a single endpoint in Australia.
The attack originated from Aisuru botnet. Aisuru is a Turbo Mirai-class IoT botnet that frequently causes record-breaking DDoS attacks by exploiting compromised home routers and cameras.
Attackers are scaling with the internet itself. As fiber-to-the-home speeds rise and IoT devices get more powerful, the baseline for attack size keeps climbing.
As we approach the upcoming holiday season, it is essential to confirm that all internet-facing applications and workloads are adequately protected against DDOS attacks.
You might also wanna read
Microsoft Azure Hit by 15.72 Tbps DDoS Attack from Aisuru Botnet
Microsoft reported that its Azure network was targeted by a massive 15.72 Tbps DDoS attack from the Aisuru botnet, using over 500,000 IP add
bleepingcomputer.com·6mo ago
Microsoft warns of crypto mining malware disguised as fake downloads of popular PC utilities
Microsoft's Windows Defender team has uncovered a cryptocurrency mining campaign targeting PC enthusiasts. Scammers are manipulating search
techspot.com·8h ago
Google reports first evidence of hackers using AI to develop zero-day security exploit
Google has reported evidence of hackers using AI to develop a zero-day security vulnerability, marking the first time the company has observ
politico.com·9h ago
FBI warns healthcare sector about Silent Ransom Group impersonating IT support staff
The FBI has issued an alert about the Silent Ransom Group (also known as Luna Moth, Chatty Spider, and UNC3753), a cyber threat group active
aha.org·9h ago
Microsoft faces cybersecurity community backlash over Digital Crimes Unit threats against exploit disclosures
Microsoft is facing backlash from the cybersecurity community after threatening to use its 'Digital Crimes Unit' against security researcher
windowscentral.com·15h ago
New phishing campaign targets Signal users to steal chat backup recovery keys
Hackers are targeting Signal users in a new phishing campaign that attempts to steal their chat backups. The attackers pose as Signal's supp
techcrunch.com·15h ago