Cloudflare, the security, performance, and reliability company, has released its 2025 Q4 DDoS report. The report offers a detailed analysis of the evolving threat landscape of DDoS attacks in 2025, based on data from one of the world’s largest networks.

The report shows that DDoS attacks surged by 121% in 2025, reaching an average of 5,376 attacks automatically mitigated every hour. Network-layer attacks were the most significant, more than tripling from 11.4 million in 2024 to 34.4 million in 2025. HTTP DDoS attacks also contributed, with 1,451 attacks mitigated per hour.

Hong Kong rose 12 places to become the second most targeted location, while the United Kingdom jumped 36 places to sixth. Global hotspots still include China, Germany, Brazil, and the United States.

Cloudflare highlighted a massive campaign by the Aisuru-Kimwolf botnet on December 19, 2025. The malware-infected Android TVs launched hyper-volumetric HTTP attacks exceeding 20 million requests per second. Despite the drama, this campaign was only a small portion of the year’s hyper-volumetric attacks. Overall, attack sizes increased by over 700% compared to late 2024, with one attack peaking at 31.4 Tbps in just 35 seconds.

The Telecommunications, Service Providers and Carriers sector was the most targeted industry. IT & Services followed, while Gambling & Casinos, Gaming, and Computer Software also faced heavy attacks.

Attack sources shifted in Q4 2025, with Bangladesh becoming the largest source, Ecuador moving to second, and Indonesia dropping to third. Many attacks originated from IP addresses linked to cloud infrastructure providers such as Microsoft, Tencent, Oracle, DigitalOcean, and Hetzner.

Ercan Aydin, AVP Middle East, Türkiye & Africa at Cloudflare, said the scale and frequency of attacks show how threat actors are evolving rapidly. He added that real-time intelligence and adaptive mitigation are critical for protecting digital services, especially in regions with growing enterprise adoption.

The 2025 DDoS attacks report underscores a sharp rise in cyber threats, highlighting the urgent need for robust defenses against these evolving attacks.

Related post

View all