Cloudflare says Aisuru/Kimwolf botnet struck at 31.4 Tbps, a new public DDoS record

Cloudflare says its quarterly DDoS threat report recorded 'an unprecedented bombardment' in the fourth quarter of 2025, a botnet-driven distributed-denial-of-service (DDoS) attack that peaked at 31.4 terabits per second — which the company calls 'the largest attack ever disclosed publicly' and 'a new world record.'

The report says the assault was launched by the Aisuru/Kimwolf botnet against Cloudflare customers and the company's own infrastructure, and that the campaign was dubbed 'The Night Before Christmas.'

In detailing targets and origins, the report lists the most attacked locations in Q4 2025 as China, Hong Kong, Germany and Brazil, with the US fifth just ahead of the UK. For geographical sources of attacks, the report says Bangladesh topped the list, followed by Ecuador, Indonesia, Argentina and Hong Kong.

Cloudflare's report highlights that the top 10 attack-source networks 'reads like a list of internet giants,' naming cloud providers such as DigitalOcean, Microsoft, Tencent, Oracle and Hetzner as the largest sources and 'demonstrating the strong link between easily-provisioned virtual machines and high-volume attacks.'

Cloudflare says its new real-time botnet detection system detected and mitigated more than 50% of HTTP DDoS attacks in the quarter. PC Gamer noted the data suggests the new record may not stand long, calling the situation 'the same old game of cat and mouse.'

cloudflare, aisuru/kimwolf botnet, 31.4 tbps attack, the night before christmas, q4 2025 ddos report, real-time botnet detection, mitigated http ddos, attack source networks, digitalocean, microsoft, bangladesh attack sources, most attacked locations