Mantis – the most powerful botnet to date

The Mantis Botnet

A record-breaking DDoS attack targeted at an undisclosed client website using Cloudflare’s Free plan was thwarted last month, which generated around 26 million requests per second, according to the company.

Mantis Botnet

Nearly 1,000 Cloudflare clients were the target of an attack by the Mantis botnet that, last month, caused the greatest HTTPS distributed denial-of-service (DDoS) attack ever recorded.

The online performance and security company Cloudflare dubbed the massive botnet and linked more than 3,000 HTTP DDoS attacks against its customers.

According to the information that has been revealed, more than 212 million HTTPS requests were made in less than 30 seconds from over 1,500 networks in 121 countries, with Indonesia, the United States, Brazil, Russia, and India leading the pack.

There are many things that make Mantis botnet stand apart as a threat. Firstly, Mantis has the capacity to carry out costly HTTPS DDoS attacks, which need a large number of computing resources to create a secure TLS encrypted connection.

The second difference between Mantis and other standard botnets is that it utilizes hijacked virtual machines and powerful servers, allowing it to have more resources than other botnets.

The goal of an attack of this scale is to exhaust the target’s processing capacity by flooding it with traffic. Traditional amplification attacks have used UDP in the past, while newer TCP reflected amplification vectors using middleboxes are now quickly replacing them.

Reflected amplification attacks will become a serious issue for internet users in the future as security experts say that new vulnerabilities in protocols and software implementations are constantly being exploited by hackers who try to avoid traditional countermeasures.

According to graphics, published in Cloudflare’s blog, Internet and telecom, media, gaming, finance, business, and shopping are among the industries most frequently targeted by Mantis cyberattacks. More than 20 percent of the attacks are directed at companies in the United States, followed by countries such as Russia, Turkey, France, Poland, and Ukraine.

Users who want to protect themselves against Mantis and other DDoS attacks are advised to check out Cloudflare’s guides Best Practices: DoS prevention measures and Response to DDoS attacks to receive more advice on how best to configure their Cloudflare services for maximum safety.


About the author

Lidia Howler

Lidia is a web content creator with years of experience in the cyber-security sector. She helps readers with articles on malware removal and online security. Her strive for simplicity and well-researched information provides users with easy-to-follow It-related tips and step-by-step tutorials.

Leave a Comment