DDoS Amplification.

Amplification (or reflection) DDoS attacks exploit Internet services that respond to a small UDP query with a much larger reply. The attacker sends queries with the victim's IP spoofed as the source, causing reflectors to send huge responses to the victim. The amplification factor — the ratio between response size and request size — can range from a few times (NTP MONLIST), to dozens (DNS ANY, SSDP), to thousands of times (memcached, the previous record-holder). This makes it possible to generate terabit-class attacks from comparatively modest infrastructure. Mitigation includes source-address validation (BCP 38/RFC 2827), disabling or restricting abusable services, rate-limiting reflectors, and DDoS scrubbing services that can absorb amplified traffic.