IP spoofing forges the source IP address — used in DDoS amplification attacks, bypassing IP-based access controls, or hiding the attacker's true origin.
TCP connections can't use spoofed IPs (handshake proves real IP). UDP attacks (DNS amplification, NTP amplification) use spoofing extensively. ingress filtering/BCP38 prevents spoofed traffic from entering the internet.