Jakarta, domclub Indonesia
—
The latest report from Cloudflare reveals
Indonesia
become a nest
hackers
world’s largest for four consecutive quarters, beating Russia to Ukraine.
This was revealed in Cloudflare’s Q3 DDoS Thread Report which was released on December 3.This report confirms that seven of the 10 main sources of DDoS attacks originate from the Asian region, with Indonesia topping the list.
ADVERTISEMENT
SCROLL TO CONTINUE WITH CONTENT
“Indonesia is the largest source of DDoS attacks, and has been ranked first in the world for a full year (since the third quarter of 2024),” wrote Cloudflare in its report, quoted Wednesday (10/12).
Before this period, Indonesia was always at the top of the list of sources of attacks.In the second quarter of 2024, Indonesia is the second largest source, climbing up from the bottom ranking in the previous quarter and year.
This shows a huge increase in DDoS attacks originating from Indonesia.
As an illustration, in the last 5 years or since Q3 2021, the increase in requests for HTTP DDoS attacks originating from Indonesia has increased by 31.9 percent.
The following is a complete list of countries with the most sources of DDoS attacks along with changes in ranking compared to the previous period:
1. Indonesia (Same)
2. Thailand (+8)
3. Bangladesh (+14)
4. Ecuador (+3)
5. Russia (+1)
6. Vietnam (+2)
7. India (+32)
8. Hong Kong (-5)
9. Singapore (-7)
10. Ukraine (-5)
Furthermore, a report from Cloudflare highlights the third quarter of 2025 being marred by the Aisuru botnet with a large army estimated at 1-4 million infected hosts globally.
Aisuru is said to have launched hyper-volumetric DDoS attacks that routinely exceeded 1 terabit per second (Tbps) and 1 billion packets per second (Bpps).
The number of attacks jumped 54 percent quarter-on-quarter (QoQ), with an average of 14 hyper-volumetric attacks per day.The scale of these attacks is unprecedented, with peak attacks reaching 29.7 Tbps and 14.1 Bpps.
Aisuru targets telecommunications service providers, gaming companies, hosting providers, and financial services, among others.
This attack also caused “widespread Internet disruption in the United States (US)”, as reported by Krebs on Security.These disruptions occur simply due to the volume of botnet traffic passing through Internet service providers (ISPs).
Although most DDoS attacks were relatively small in the third quarter, the number of DDoS attacks exceeding 100 million packets per second (Mpps) increased by 189 percent quarter-on-quarter (QoQ).
Similarly, attacks exceeding 1 Tbps increased by 227 percent QoQ.At the HTTP layer, 4 out of every 100 attacks exceed 1 million requests per second.
In addition, the majority of attacks, or around 71 percent of HTTP DDoS attacks and 89 percent of attacks at the network layer, ended in less than 10 minutes.
This duration is too fast for humans or on-demand services to respond.A brief attack may only last a few seconds, but the disruption it causes can be severe, and recovery takes much longer.
Engineering and operations teams must then navigate the complex and multi-step process of bringing critical systems back online, checking data consistency across distributed systems, and restoring secure and reliable service for customers.
domclubIndonesia.com
has contacted the Spokesperson for the National Cyber and Crypto Agency (BSSN) Ariandi Putra and the Director General of Digital Space Monitoring at the Ministry of Communication and Digital (Komdigi) Alexander Sabar to ask for a response regarding this report.However, there has been no response until this news was written.
Get to know DDoS attacks
DDoS attacks work by flooding a particular server with fake internet traffic to cause problems.As a result, the server cannot be accessed by real users who want to log in.
One of the biggest problems in identifying DDoS attacks is that the symptoms are unusual.
Many of the symptoms are similar to those experienced by technology users every day, including slow upload or download performance speeds.
Additionally, the site becomes inaccessible, the internet connection is lost, the media and content are unusual, or the amount of spam is excessive.
DDoS attacks can last for several hours to several months, with the severity of the attack varying.
The types of attacks vary from volume-based attacks (Volumetric Attacks), protocol attacks (Protocol Attacks), and application layer attacks (Application-Layer Attacks).
(lom/dmi)
[Gambas:domclub Video]
