A new DDoS attack vector is in town, exploiting a somewhat unknown protocol. Without further ado, let us dive in.
Akamai observed the attack after it hit some of its customers. The protocol abused is known as Datagram Congestion Control Protocol (DCCP) that offers data congestion procedures for UDP-based communications. Although DCCP has various capabilities, attackers exploited the three-way handshake at the beginning of a connection between DCCP and UDP.