Recall that DDoS attacks (distributed denial of service attacks) are called the creation of a large number of requests for a particular site, after which the server does not get up and the site opens with a long delay or stops opening for a while.
According to The Verge, during the attack, the maximum traffic value reached 2.3 Tbit / s, while the previous record of 1.7 Tbit / s was recorded in March 2018 during an attack against the NetScout Arbor service. AWS noted that the consequences of the attack were mitigated with the AWS Shield protection service, designed for such cases.
The company did not specify which of the AWS customers was the target of the attack, nor did it reveal who was behind it. The report says that the attackers used pirated web servers that use the CLDAP protocol. It is an alternative to the old LDAP protocol and is used to connect, search, and modify shared directories on the Internet. Cybercriminals have been abusing CLDAP to launch DDoS attacks since the end of 2016, as CLDAP servers can increase unwanted traffic 56 to 70 times, says SecurityLab.