As an operator, I have questions about this; I also have very good metrics. I see a lot of what looks like what has traditionally been SYN reflection attacks. I have solid metrics and TTPs, which I'm willing to share TLP:RED and possibly discuss TLP:YELLOW.

I'd like to see some metrics which compare proven bot activity vs SYN reflection against the same infrastructure.