HTTP/2に対する分散型サービス拒否 (DDoS) 攻撃に対するマイクロソフトの対応について
Tuesday, October 10, 2023
本ブログは、Microsoft Response to Distributed Denial of Service (DDoS) Attacks against HTTP/2 の抄訳版です。最新の情報は原文を参照してください。
CVE-2023-44487
Microsoft Response to Distributed Denial of Service (DDoS) Attacks against HTTP/2
Tuesday, October 10, 2023
Summary Beginning in September 2023, Microsoft was notified by industry partners about a newly identified Distributed Denial-of-Service (DDoS) attack technique being used in the wild targeting HTTP/2 protocol. This vulnerability (CVE-2023-44487) impacts any internet exposed HTTP/2 endpoints. As an industry leader, Microsoft promptly opened an investigation and subsequently began working with industry partners for a coordinated disclosure and mitigation plan.