Info: Report on the recent DDoS issue
Starting from Friday edpnet was subject to major Denial of Service attacks (DDoS). An overview of the attacks and the time frames can be found below:
- Friday 28/08/2020, 18:00 – 19:00
- Sunday 30/08/2020, 20:30 – 20:45
- Sunday 30/08/2020, 22:20 – 00:55
- Monday 31/08/2020, 04:05 – 05:05
- Monday 31/08/2020, 11:15 – 18:45
In the past edpnet was always capable of mitigating these attacks ourselves by blocking these at the edge of our network. It looks like we were lucky in the past, and our luck ran out.
The attacks were this time directed towards our core networking equipment, primary and backup, and the traffic reached 200 Gbps, way too much for us to handle ourselves, causing DNS issues, and slow internet connections towards multiple destinations. Therefore we decided to contact a party (NBIP-NaWas) specialized in resolving these attacks, and setup a connection with them. This connection was up and running by midnight, and they mitigated 5 more attacks (three of 100 Gbps, two of 200 Gbps) without impact for our customers, proving it works. Two examples of such attacks can be found below:
This setup is permanent, and this way we can minimize these kind of attacks much quicker, reducing the impact to a bare minimum.
You can read some background information online:
We sincerely apologize for any inconveniences caused.
The edpnet team
P.S. Today 04/09 we can confirm there were no new attacks in the last 48 hours.