Cloudflare, Google and AWS Disclose HTTP/2 Zero-Day Vulnerability

Cloudflare, Google, and AWS have disclosed a new zero-day vulnerability attack, “HTTP/2 Rapid Reset,” which exploits a weakness in the HTTP/2 protocol to generate massive DDoS attacks. The vulnerability allows for multiple HTTP/2 connections with requests and resets in quick succession, causing a denial of service. The companies have implemented additional mitigations for their CDN and WAF that support HTTP/2 and recommend customers check with their vendors for potential impact.
Read more at InfoQ…

Cloudflare, Google and AWS Disclose HTTP/2 Zero-Day Vulnerability

Related

bash_tls: minimalist TLS 1.2 in pure bash

Revolutionizing Text Encoding: The Rise of LLM2Vec

Revolutionizing AI: Multi-Token Prediction Accelerates Large Language Models

The Timeless Explorer: Michel Siffre’s Underground Odyssey Unlocks Human Biological Clocks

Hermes 2 Pro: Revolutionizing AI with Advanced Function Calling and JSON Outputs

Defying Gravity: The Quest for a Propellant-less Drive in Space Exploration

OpenBioLLM-70B Outperforms GPT-4, Gemini, Meditron-70B, Med-PaLM-1 & Med-PaLM-2 in Medical-domain.

Meta’s Reality Labs Faces Billions in Losses Amidst VR’s Declining Appeal

Cannabis Use Linked to Epigenetic Changes, New Study Finds