In the second quarter of 2025, Cloudflare revealed a significant increase in the number of Distributed Denial of Service (DDoS) attacks detected and blocked. In this 22nd edition of the DDoS threat report, a number of important trends have been identified, indicating changes in DDoS attack patterns and targeted targets.
In this article, we will discuss the key findings of this report and their impact on the security of digital infrastructure around the world.
Advanced Reports on DDoS Threats
Cloudflare’s Q2 2025 edition of the report provides in-depth insights into DDoS attack trends, with a primary focus on the rapidly surging rise in hyper-volumetric attacks. Although the total number of DDoS attacks decreased slightly compared to the previous quarter, these attacks still showed a significant increase compared to last year.
DDoS attacks that occurred in June 2025 even covered nearly 38% of the overall activity recorded worldwide, with several notable targets, including independent news outlets in Eastern Europe.
Hyper-Volumetric Attacks: A Rising Threat
One of the biggest findings in the report is the surge in hyper-volumetric DDoS attacks. Cloudflare recorded more than 6,500 hyper-volumetric attacks in the quarter, with an average of about 71 attacks daily. These attacks include Layer 3 and Layer 4 (L3/4) DDoS types that exceed 1 Terabit per second (Tbps) or 1 Billion packets per second (Bpps), as well as HTTP DDoS attacks that exceed 1 million requests per second (Mrps).
Comparisons to the previous quarter showed a remarkable spike in the number of attacks exceeding 100 million packets per second, with a 592% increase in attacks exceeding that figure. Even more shocking, the number of attacks exceeding 1 billion packets per second and 1 terabit per second even doubled compared to the previous quarter.
Concerning DDoS Attack Data
In Q2 2025, Cloudflare managed to block 7.3 million DDoS attacks, which is a significant decrease from the 20.5 million attacks in the first quarter of this year. Despite the decline, the number of successfully blocked attacks this year has reached 27.8 million attacks, which is equivalent to 130% of the total blocked attacks throughout 2024. This number further underscores how significant the threats faced by critical infrastructure around the world are.
Layer 3/Layer 4 (L3/4) DDoS attacks decreased by 81% to 3.2 million attacks, while HTTP DDoS attacks increased by 9% to 4.1 million attacks. This reflects a new trend in DDoS attacks, where HTTP attacks are increasingly dominating compared to other types of attacks.
Most Targeted Sectors
The industries that will be the main targets of DDoS attacks in the second quarter of 2025 are telecommunications, service providers, and carriers. Critical infrastructure, including cloud and network service providers, continues to face ongoing threats. Companies in this sector are the main targets because they provide vital services that are needed to support global digital activities.
The Actors Behind the DDoS Attack
One of the interesting findings in this report is the results of a survey conducted on companies that are victims of DDoS attacks. When asked who was behind the DDoS attack, the majority (71%) did not know the identity of the perpetrator. However, for those who were able to identify the culprit, 63% attributed the attack to an industry competitor, a pattern that is commonly seen especially in the gaming, gambling, and crypto sectors.
In addition, another 21% attributed the attack to state actors or state-sponsored actors, while the rest (5%) stated that they were victims of attacks due to internal issues, such as attacks from disgruntled customers or even attacks carried out by internal parties (self-DDoS).
Read More : How a CDN Can Help Grow Your Business Revenue
The Ever-Increasing Threat: Steps to Take
While Cloudflare continues to improve its ability to detect and mitigate DDoS attacks, threats to critical infrastructure, especially in the telecommunications and service provider sectors, continue to grow. Hyper-volumetric DDoS attacks, which are increasingly sophisticated and high-capacity, demonstrate just how much of a challenge organizations face in protecting their networks and applications.
For this reason, companies and organizations in threatened sectors need to strengthen their defenses by implementing better and automation-based DDoS security systems. Using Cloudflare-based solutions and others that provide automated attack mitigation can help mitigate the impact of these attacks.
Conclusion: DDoS Attacks Are Still A Major Threat
Hyper-volumetric DDoS attacks that are rapidly increasing in Q2 2025 signal that this threat is not going away anytime soon. Although the number of attacks decreased slightly compared to the previous quarter, critical sectors remained the main targets, and these attacks were getting bigger in scale. Therefore, it is critical for organizations to remain vigilant and constantly update their defense systems to counter these increasingly sophisticated threats.
🌐🚨 Stay Ahead of DDoS Attacks with ANP Technology! 🚨🌐
The rise of hyper-volumetric DDoS attacks in 2025 is a major wake-up call for businesses worldwide! 🌍 As the threats grow more sophisticated, now’s the time to fortify your infrastructure. Whether you’re in telecommunications, cloud services, or any critical sector, ANP Technology offers the best-in-class solutions for DDoS protection. 💻⚡
💪 Why Choose ANP Technology?
- Cutting-edge DDoS mitigation tailored to your needs.
- Automated security systems that respond in real-time.
- Trusted partner with expertise in defending Australian enterprises. 🇦🇺
Don’t wait for an attack to disrupt your operations. Strengthen your defenses today with ANP Technology—Australia’s top choice for technical service and digital security. 🌐🛡️
👉 Contact us now to ensure your business is protected!
