Info: Report on the recent DDoS issue

Dear customers,

Starting from Friday edpnet was subject to major Denial of Service attacks (DDoS). An overview of the attacks and the time frames can be found below:

  • Friday 28/08/2020, 18:00 – 19:00
  • Sunday 30/08/2020, 20:30 – 20:45
  • Sunday 30/08/2020, 22:20 – 00:55
  • Monday 31/08/2020, 04:05 – 05:05
  • Monday 31/08/2020, 11:15 – 18:45

In the past edpnet was always capable of mitigating these attacks ourselves by blocking these at the edge of our network. It looks like we were lucky in the past, and our luck ran out.

The attacks were this time directed towards our core networking equipment, primary and backup, and the traffic reached 200 Gbps, way too much for us to handle ourselves, causing DNS issues, and slow internet connections towards multiple destinations. Therefore we decided to contact a party (NBIP-NaWas) specialized in resolving these attacks, and setup a connection with them. This connection was up and running by midnight, and they mitigated 5 more attacks (three of 100 Gbps, two of 200 Gbps) without impact for our customers, proving it works. Two examples of such attacks can be found below:

This setup is permanent, and this way we can minimize these kind of attacks much quicker, reducing the impact to a bare minimum.

You can read some background information online:

https://datanews.knack.be/ict/nieuws/ddos-aanval-treft-edpnet/article-news-1635675.html

https://datanews.levif.be/ict/actualite/une-attaque-ddos-touche-edpnet/article-news-1326101.html

https://tweakers.net/nieuws/171594/belgische-provider-edpnet-heeft-al-vier-dagen-te-maken-met-ddos-aanvallen.html

We sincerely apologize for any inconveniences caused.

Customer-friendly regards
The edpnet team

P.S. Today 04/09 we can confirm there were no new attacks in the last 48 hours.


Outage : Problem with internet services – DDoS attacks on 28/08-31/08/20 : SOLVED

Dear customers,

We have experienced an outage with internet services (traffic drops) due to several DDoS attacks*** on our network. The attacks occurred at different hours and were causing intermittent connection, speed issues and packet loss. The heaviest one took place on Monday 31/08 and lasted from 11h15 until 18h45. Outside of those hours, everything was normal. Our Network Operations team has found and applied (on 01/09 at 1h29) a permanent solution to prevent and immediately mitigate such attacks in the future.

Please find all details below:

Start*: 2020-08-28 18:00*
End*: 2020-09-01 01:29*
Duration: 1) 2020-08-28 18:00 – 2020-08-28 19:00

2) 2020-08-30 20:30 – 2020-08-30 20:45

3) 2020-08-30 22:20 – 2020-08-31 00:55

4) 2020-08-31 04:05 – 2020-08-31 05:05

5) 2020-08-31 11:15 – 2020-08-31 18:45

Impacted services: all internet services
Affected Areas**: all areas

EDIT 12:30*: We have been under attack again since approximately 11:15. Access to our issues blog was limited so we were unable to keep you updated. Our apologies. We are doing our best to mitigate and solve the problem.

EDIT 2: 15h12*: Seems that the last attack is still ongoing.  We are working hard to try to minimize the impact. Rebooting your modem/router to receive new DNS servers can help (but not guaranteed).  In general surfing should be possible, only certain destinations will be difficult to reach.  We keep you posted.

EDIT 3: 20h25*: The last attack finished at 18:45. We did our best to mitigate what was possible but the overload was extensive. Edpnet DNS servers are currently available again. We are working very hard with an external party towards providing a permanent solution to minimize the impact of any further attacks.

We apologize for the inconveniences.

Best regards
The edpnet team

*All times are listed in CET, Central European Time
** Check the different areas & zones on our support site

*** DDoS (Distributed-Denial-of-Service- attack) is kind of a cyber-attack, when malicous users seek to make a machine or network resource unavailable by flooding the provider or target with superfluous requests, which results in systems overload and connectivity issues


Outage : Problem with internet services – SOLVED

Dear customers,

We are currently experiencing an outage with internet services (traffic drops). Our Network Operations team is investigating the outage.

Further details on the affected areas and an estimated duration will be released as soon as possible.

EDIT 19:40*: Our DNS-servers were the target of a concerted DDOS-attack for approximately one hour (18:00 – 19:00), involving large amounts of traffic and major network saturation. At this time the attack has cleared up and we are investigating further.

EDIT 30/8 20:35*: It seems like we’re being attacked again since a few minutes. Our Network Operations team is investigating. More updates will follow soon.

EDIT 20:45*: The attack was mitigated after some actions from our Network Operations team. It was smaller than last time, but still very much able to knock out our DNS-servers. We’re working to restore all services.

EDIT: 21:15*: All services are restored.

EDIT: 31/8 5h05 We experienced other waves of DDoS attacks between 30/8 22h20 and 31/08 05h05. For the moment, the attacks are fully mitigated.

We apologize for the inconveniences.

Best regards
The edpnet team


Outage: Internet services down : SOLVED

UPDATE 14h15: all links have been restored. The problem is completely resolved. Further details about this major incident will be shared later this week.

UPDATE 13h05: main path is restored , the peerings are being re-enabled , the traffic flow should get back to normal very soon.

Dear customers,

We are currently experiencing a fiber cut within our network. Internet and telephony services are unavailable for our customers in the Netherlands. Our Network Operations team is investigating the outage.

Further details  and an estimated duration will be released as soon as possible.

We apologize for the inconveniences.

Best regards
The edpnet team


Info: Phishing mails from edpnet domain

Dear customers,

We would like to inform you about a new wave of phishing mails pretending to come from @edpnet.be domain, aimed at both customers and non-customers.

The message may contain different subjects and asks you to give personal information, pay money or follow a link.

Please do not reply to those emails and do not open any files or click on any links. For more information, please, consider reading through our support article on this subject

https://www.edpnet.be/en/support/troubleshooting/internet/learn-about-security/phishing.html

If you have any questions left, please do not hesitate to contact us.

Best regards
The edpnet team


Info: Spam/phishing “Recordatorio: informacion de pago para actualizar”

Dear customers,

We would like to inform you about a new phishing wave – customers receive emails pretending to come from our services and inviting to update their personal information.

This is a blackmail spam and is not coming from edpnet!

Please do not reply to those emails and do not open any files or click on any links. For more information, please, consider reading through our support article on this subject

https://www.edpnet.be/en/support/troubleshooting/internet/learn-about-security/phishing.html

If you have any questions left, please do not hesitate to contact us.

Best regards
The edpnet team


Info: Phishing pop-up with edpnet logo

Dear customers,

We would like to inform you about a new phishing wave – customers see a pop-up with edpnet logo shown up while surfing the web. The message claims that edpnet is running a promotion on the occasion of its anniversary (or a satisfaction survey, contest, etc.) and is offering some gifts to the customers.

This is a fake phishing pop-up and is not coming from edpnet.

Please do not click on any link and do not reply to that message!

For more information, please, consider reading through our support article on this subject

https://www.edpnet.be/en/support/troubleshooting/internet/learn-about-security/how-do-i-block-phishing-pop-ups.html

If you have any questions left, please do not hesitate to contact us.

Best regards
The edpnet team


Outage: problem with internet services : SOLVED

Dear customers,

Due to an issue with one of our upstream providers, a part of the internet was not reachable anymore. We were rerouting the traffic to another provider while fixing the issue. Since Saturday 14/12/2019 8h45 CET the previous configuration is restored and traffic runs its normal path.

Please find all details below:

Start*: 2019-12-13 15:15
End*: 2019-12-13 16:07
Duration: 52 minutes
Impacted services: all internet services
Affected Areas**: Belgium & The Netherlands

 

We apologize for the inconveniences.

Best regards
The edpnet team

*All times are listed in CET, Central European Time
** Check the different areas & zones on our support site


Outage: Fiber cut between Amsterdam and Rotterdam. Traffic is rerouted : SOLVED

Dear customers,

We are currently experiencing a fiber cut between Amsterdam and Rotterdam. Traffic is rerouted via a longer path.

Further details on the affected areas and an estimated duration will be released as soon as possible.

Please find all details below:

Start: 2019-08-01 00:10*
End: 2019-08-01 13h58*
Duration: 13h48min
Impacted services: All internet services
Affected Areas: Belgium & The Netherlands

UPD 10h10*: Eurofiber is investigating the outage. Estimated time of resolution: 2019-08-01 15h00*

UPD 13h58*: Splicing works ended. Traffic runs its normal path.

We apologize for the inconveniences.

Best regards
The edpnet team

*All times are listed in CET, Central European Time


Speed issues in Belgium and Netherlands : SOLVED

Dear customers,

We are currently experiencing an issue with internet traffic since yesterday evening 20:30. Our Network Operations team has located the faulty interface and shut it down, which resolved the problems around 09:30.

While our engineers are in progress of repairing the fault, customers may experience slower speeds to certain networks. Further updates will be released as soon as possible.

Please find all details below:

Start: 2019-07-17 20:30*
End: 2019-07-18 16h18
Duration: 20h38min
Impacted services: all internet services : slower speeds and latency
Affected Areas: Belgium and the Netherlands

 

We apologize for the inconveniences.

Best regards
The edpnet team

*All times are listed in CET, Central European Time