Varkey added that modern DDoS attacks increasingly resemble hit-and-run incidents, striking suddenly, lasting only minutes, and disappearing before defenses fully engage. He said their speed and intensity require always-on protection and preemptive resilience rather than reactive mitigation.
The attack shows how millions of consumer devices have effectively become strategic weapons capable of straining even hyperscale cloud platforms.
“DDoS is no longer a containable nuisance, but a genuine infrastructure-level risk with potential economic impact,” said Chandrasekhar Bilugu, CTO of SureShield. “Enterprises must treat DDoS protection as Tier-0 infrastructure, using multi-provider, always-on setups with capacity headroom measured in tens of terabits per second, rather than treating it as an afterthought.”
High-bandwidth home internet and stronger IoT devices increase per-device attack capacity, enabling large DDoS attacks with fewer nodes, according to Keith Prabhu, founder and CEO of Confidis.
“Modern IoT botnets can now perform smarter layer-7 attacks, not just volumetric attacks,” Prabhu said. “Low security awareness among home end users often leads to compromise of endpoints, which can then be used for such attacks.”
Enterprises often assume cloud providers fully protect against DDoS, but providers secure the platform rather than individual workloads or APIs, analysts added.
