This is a dedicated watch page for a single video.
An application runs across multiple Amazon EC2 instances in multiple Availability Zones behind an Application Load Balancer (ALB). The application is experiencing a DDoS attack from malicious software that is distributed across hosts around the world. The software can be identified in the User-Agent field of the request header. A security engineer needs to mitigate the attack. Which actions should be taken?