The Aisuru botnet, built from millions of hijacked routers and other cheap IoT devices, has driven DDoS attacks to levels the internet has never seen before.
Cloudflare, the internet security provider, reports that Aisuru now controls up to four million infected devices, mainly spread across Asia. Indonesia is the biggest source of its traffic. These devices have launched repeated multi terabit attacks, including a Q3 peak of 29.7 Tbps that blasted traffic across thousands of ports at once.
Activity has risen sharply. Cloudflare says it stopped 1,304 major Aisuru attacks in Q3 and 2,867 so far this year, as network layer attacks jumped 87 percent quarter on quarter while HTTP attacks fell.
Some sectors have faced far heavier targeting. For example, generative AI firms saw a 347 percent spike in September, and industries linked to rare earths and EV trade tensions also recorded sharp increases.
Aisuru’s reach is made worse by the fact that parts of the botnet can be hired cheaply, enabling short, intense attacks that often end before older defences can respond.
Businesses can reduce their risk by using always on network protection, automating detection, and keeping exposed systems patched, since traditional on demand tools cannot keep pace with attacks of this speed and scale.