The invention relates to CC (Communication Center) attack protective method and system thereof. The method comprises the steps of: 1, judging whether an access is a first access; 2-1, if the access is the first access, generating a client script and sending to a client end, requiring a client to verify the script, using the verified script as a safety mark and carrying out a second access; 2-2, if the access is not the first access, analyzing HTTP head information, judging whether the safety mark exists in the access request and is legal or not, if the access does not have the safety mark or the safety mark is illegal, executing the step 3, and if the access has the legal safety mark, allowing the client end to access a WEB server; and 3, marking the access as one attack, and rejecting the client end to access the WEB server. The system comprises a CC attack detection module, a CC random script generating module, a filter module and a control management module. The method can be used for rapidly detecting a CC attack object and avoids shielding a normal access request of a user.