Hyper-volumetric DDoS attacks skyrocket: Cloudflare's 2025 Q2 DDoS threat report

The 22nd edition of the Cloudflare DDoS Threat Report highlights the evolving landscape of Distributed Denial of Service (DDoS) attacks in the second quarter of 2025, noting a significant increase in hyper-volumetric attacks. June was particularly active, with a peak attack reaching 7.3 terabits per second. Despite a decrease in the overall number of attacks compared to the previous quarter, the volume remained 44% higher than the same period in 2024. Telecommunications and Internet service providers were the most targeted industries, while China and Brazil emerged as the most attacked locations based on customer billing data. The report emphasizes the prevalence of botnet-driven attacks, including a rise in ransom DDoS attacks and the use of legacy protocols for evasion. It also underscores the need for proactive, always-on security measures, supported by Cloudflare's extensive network and real-time threat intelligence, to effectively mitigate these threats and contribute to community-based botnet takedowns.