The Railway team recently experienced a significant Distributed Denial of Service (DDoS) attack that lasted for approximately 2 hours and affected users worldwide, particularly those in Europe. The attack peaked at over 12 million requests per second, making it one of the largest DDoS attacks ever recorded on the platform. To mitigate the attack, Railway engineers worked tirelessly to isolate the hostile traffic, implement additional services to reduce the attack's impact, and rate limit incoming connections. Despite initial challenges, they were ultimately able to recover from the incident by inserting a new service in the critical pathway between their load balancer and edge network, which blunted the traffic enough to allow for further rate limiting. The team has since filed a ticket with their upstream provider to address the issue and is working on additional preventative measures to improve security and mitigate future attacks.