How would you mitigate a high-volume Layer 7 DDoS attack targeting a critical API endpoint at Dun & Bradstreet?