Just recently, Cloudflare announced that the number of distributed-denial-of-service (DDoS) attacks have skyrocketed, with hyper-volumetric DDoS incidents hitting new all-time highs. During the second quarter of 2025, the company prevented more than 6,500 hyper-volumetric DDoS attacks at an average rate of 71 per day. It’s worth mentioning that over 70% of HTTP DDoS attacks were initiated by detected botnets.
That’s an astounding 6% of all HTTP DDoS attacks measured more than 1 million requests per second (rps). At the same time, 5 of 10,000 Level 3 and Level 4 (L3/4) DDoS attacks exceeded 1 terabit per second (Tbps). The latter category is where we have seen the most alarming growth – a staggering 1150% quarter-over-quarter. Even hyper-volumetric DDoS attacks greater than 100 million packets per second (pps) increased by 592% quarter over quarter.
Omer Yoachimik and Jorge Pacheco, both from Cloudflare, stated, “Overall, in Q2 2025, hyper-volumetric DDoS attacks skyrocketed.” This profound increase in attack volume should be alarming to both private sector businesses and CIKR sectors.
Like in early 2025, when the attackers started a 18-day long continuous concentrated campaign Cloudflare and similar critical infrastructure. That aggressive campaign resulted in a jaw-dropping 13.5 million attacks. The ramifications of such a long-term, complex effort are far-reaching, especially considering the increasingly hostile cyber environment. Furthermore, Cloudflare reported a 68% rise in ransom DDoS attacks over this same year-long timeframe.
Although most DDoS attacks are relatively small, hyper-volumetric DDoS attacks have been trending larger and more frequent,” Cloudflare noted. Typically, these large-scale attacks are command-and-control (C2) driven and can be launched to create massive levels of volumetric traffic. They are often narrowly focused at high margin enterprise sectors which include gaming, hosting, and enterprise services.
Countries such as Indonesia, Singapore, Hong Kong, Argentina, and the Ukraine are leading this charge. They all sit squarely in top five of DDoS attack sources globally.
Another example of this was a significant outlier that struck when a DDoS attack ramped incredibly to a gobsmacking 7.3 Tbps. In only 45 seconds, it ramped up to 4.8 billion pps! These examples demonstrate the sophistication and scale of today’s cyber threats.
