How botnet-driven DDoS attacks evolved in 2H 2025
Summary
In the latter half of 2025, DDoS attacks saw a significant evolution driven by the integration of AI, the increased capacity of botnets reaching up to 30Tbps, and the growing accessibility of DDoS-for-hire services. These advancements have lowered the barrier to entry for sophisticated attacks, making them available to less technical adversaries. NETSCOUT's ATLAS platform observed over 8 million DDoS attacks during this period, with IoT botnets and AI-powered tools being key contributors.
IFF Assessment
The article highlights the increased sophistication and accessibility of DDoS attacks, making them a greater threat to organizations.
Defender Context
Defenders must prepare for more powerful and easily deployable DDoS attacks, especially those leveraging AI and large-scale botnets. Organizations should focus on robust DDoS mitigation strategies, including network resilience and real-time threat intelligence to counter evolving attack vectors. The rise of AI-assisted attacks necessitates advanced detection and response capabilities.