"For each packet sent, the vulnerable CUPS server will generate a larger and partially attacker-controlled IPP/HTTP request directed at the specified target. As a result, not only is the target affected, but the host of the CUPS server also becomes a victim, as the attack consumes its network bandwidth and CPU resources."
"According to the team that found it, there are more than 198,000 devices online vulnerable to the earlier CUPS attack chain, and around 58,000 of those are ripe for DDoS abuse."
"If padding of the packets to increase their size is assumed, something Akamai said the attack can easily do, then a single UDP packet attack could reach as large as 6 GB."
"Akamai expects such a ripe target will soon attract malicious actors, particularly given that the necessary attack conditions are minimal and easy to exploit."
Collection
[
|
...
]