CMS Live Web Hosting

How to Survive a 48 Hour Layer 7 DDOS Worldwide Botnet Attack

Picture of Martin Starkie
Martin Starkie
Co-Owner / Technical Director
How to Survive a 48 Hour Layer 7 DDOS Worldwide Botnet Attack

Summary

In this post, CMS Live shares how they successfully defended against a 48-hour Layer 7 DDOS botnet attack. The attack evolved from a basic layer 3 & 4 DDOS to a sophisticated application-layer assault, pushing over 1.2 billion requests and 5.47TB of bandwidth. By implementing advanced DDOS protection, CMS Live ensured the website stayed online and secure without affecting the user experience. The post highlights the importance of strong, knowledgeable defenses against increasingly intelligent and prolonged botnet attacks.
  • 2 minutes read

You will learn

  • How Layer 7 DDOS attacks evolve from basic to sophisticated.
  • The role of advanced DDOS protection in stopping large-scale attacks.
  • How CMS Live managed a 48-hour DDOS attack without downtime.

Hacks happen. That’s part of the online world nowadays. Prevention is the best defence, but if a hacker gets through, you need to know how to fight back.

At CMS Live, we know how to stop sophisticated attacks. Earlier this year, we fought off a 48-hour Layer 7 DDOS worldwide botnet attack on one of our hosted websites.

Initially, the problem seemed basic. A layer 3 & 4 DDOS attack was flagged as it tried to overwhelm the firewall, server hardware, and OS. But as the network system admins started to rate-limit requests, the attack quickly turned into a Layer 7 DDOS attack. Thousands of single URL requests came from unique IPs, ASNs, and countries.

Defending Against An Intelligent Enemy

After six hours, the botnet increased its payload. We had to rethink our strategy. The Cisco hardware firewall was becoming saturated due to heavy traffic. So, we temporarily re-routed to a new IP address for our customer’s URL. This botnet was smart. Within sixty minutes, it discovered our new IP and followed us, using real-time DNS lookups and more simultaneous requests.

We needed specific DDOS protection on a larger scale. After re-routing the DNS through the DDOS platform, we saw how severe the attack was. The platform handled over 1.2 billion requests and over 5.47TB in bandwidth in under 24 hours.

The botnet DDOS lasted almost 48 hours, which is rare. Most botnets are active for 15 to 30 minutes. This is usually enough time to take a website offline or slow it down. A two-day blitz showed an unusually determined hack.

Once the advanced DDOS protection was in place, we continued business as usual. The server operated under normal load. Visitors and customers didn’t notice any trouble. We were hit with over 1.2 billion web requests and over 5.5TB of bandwidth. Thanks to the advanced DDOS protection, the website’s user experience and integrity were never compromised. Nobody was in danger.

Botnet attacks are on the rise because hiring hackers is cheap. But with a knowledgeable defence team, your website will stay safe. No matter how intelligent the DDOS attack is.

On this page

Hosting Knowledge

Security Headers for Website Hosting

How Security Headers Strengthen Your Website Hosting – A+ Protection by CMS Live Hosting

Website security is more than just having an SSL certificate—it requires robust security measures like security headers to protect against cyber threats. In this blog post, we explain what security headers are, why they matter, and how they safeguard websites from attacks such as XSS, clickjacking, and data injection. CMS Live has achieved A+ security ratings for its hosting services, proving our commitment to website security. We offer fully managed hosting with built-in security measures, ensuring businesses stay protected. If security matters to you, CMS Live is the right hosting partner.

Read More
Secure Website Hosting for Business Owners | CMS Live

Secure Website Hosting for Business Owners: Why It Matters

In today’s digital world, website security is more important than ever for business owners. This blog post highlights the importance of secure website hosting for business owners and explains how a security-first approach can protect websites from cyber threats. It covers essential security measures, including real-time threat monitoring, DDoS attack mitigation, web application firewalls, and SSL encryption. Business owners will also learn what to look for in a hosting provider, ensuring their website stays protected against evolving threats. With fully managed security, CMS Live ensures businesses can focus on growth without worrying about cyber risks.

Read More
Load More
Past Updates
Share the Post: