Anyone sending udp paquets with spoofed ip addresses to arma3 server port or steam query port will make the CPU go 100% and completly freeze the server (RDP impossible, hard reboot needed).
After some research this is an old issue:
https://forums.bistudio.com/topic/127167-patch-the-game-to-prevent-ddos-exploit-please/
You want a repro, give me an IP and a time.
I joined a perl script that reproduce it (you need a machine that allow ip spoofing).
usage: perl a2s_info.pl <ip>
Plus you can make amplification attacks using A2S_info on steam query port (what is in the perl script)
https://developer.valvesoftware.com/wiki/Server_queries#A2S_INFO
This script can take down server with very low bandwidth (a 4mbps attack was sucessfull on an OVH ddos protected server)
We are getting attacked every day and the attackers even made a facebook page where they post every french altis life they take down using this method.
This is serious.