Cool Ideas hit by DDoS attack

Newsfeed

Newsfeed

MyBroadband Newsfeed
Staff member
Joined
Jun 28, 2017
Messages
6,805
Reaction score
648
Cool Ideas hit by DDoS attack

Cool Ideas has stated on its website that it experienced a DDoS (distributed denial of service) attack on its network today.

“We are currently experiencing a distributed denial of service attack that is affecting all customers on our network’s international traffic,” the ISP said this afternoon.
 
I don't know if it is a coincidence or not, but I've just cleared all (browser) cookies as a last ditch attempt after I initially cleared the cache which made no difference, however browsing is now working after clearing all cookies.

@TheRoDent is it possible that sites protected by Cloudflare would be most affected from the client's perspective?

I'm thinking some of the cookies I cleared must have contained old Cloudflare data that was effectively rendered useless as a result of the DDoS, clearing cookies probably forced a connect to a different Cloudflare cluster not affected by the DDoS.
 
Depends on which cloudflare host you're accessing. MyBroadband, for example has been cloudflare routed to the UK since our first attack on Sept 11 (see the coincidence) ? And not just from our network. From others' too.


That is not something we control unfortunately.
 
TheRoDent said:
Depends on which cloudflare host you're accessing. MyBroadband, for example has been cloudflare routed to the UK since our first attack on Sept 11 (see the coincidence) ? And not just from our network. From others' too.


That is not something we control unfortunately.
Click to expand...
In particular, before clearing cookies both MyBB and Takealot were not loading for me at all, after clearing cookies I had no problems with both sites, I realise it's not definitive proof and could just be a huge coincidence.

So is the DDoS fully mitigated now?
 
Is the DDOS coming from dedicated servers or is it from infected PC's around the world?
 
Seriously pissef off as Cool Ideas international connection keeps going down. Thinking of moving to Afrihost. What's do you recommend I do? Is Cool Ideas just not buying enough data to cover there customers usage and keep having to buy more?
 
ZuluKing said:
Seriously pissef off as Cool Ideas international connection keeps going down. Thinking of moving to Afrihost. What's do you recommend I do? Is Cool Ideas just not buying enough data to cover there customers usage and keep having to buy more?
Click to expand...
Time for you to do some reading:

Search results

mybroadband.co.za mybroadband.co.za
 
So how does an ISP protect against this? Websites can use cloudflare, but I assume this DDoS is targeting specific network infrastructure? Else the attack would be affecting more ISP's?
 
Segg said:
So how does an ISP protect against this? Websites can use cloudflare, but I assume this DDoS is targeting specific network infrastructure? Else the attack would be affecting more ISP's?
Click to expand...

That is what I don't understand. They had to attack a key part of the network to bring it down. Attacking cisp dns server or website or even a router is not enough. They needed to attack specific router or multiple to bring the network down. Also those ips aren't visible so how do they know where they sit in the network.

Even of transit capacity is being used up by the attack things should just go slow not dead.

The attacker needs to have access to a decent sized botnet to amplify it like this which is also very tricky.

Then you have to ask yourself why cool ideas? Why not other ISPs. You can do way more damage bring down mtn or vodacom for example why did they attack cisp.

Very odd.
 
Could be one of two causes for me: their prominence as “top rated Netflix ISP” has got them attention from Russia/NK hackers OR a former employee(s) has given away the config of their servers.

It’s a pity it’s been two weekends in a row cos I’ve decided to switch over to another ISP that isn’t in the cross hairs. Thankfully the kids Netflix streaming still worked as hosted on SA servers if I recall.
 
cavedog said:
That is what I don't understand. They had to attack a key part of the network to bring it down. Attacking cisp dns server or website or even a router is not enough. They needed to attack specific router or multiple to bring the network down. Also those ips aren't visible so how do they know where they sit in the network.

Even of transit capacity is being used up by the attack things should just go slow not dead.

The attacker needs to have access to a decent sized botnet to amplify it like this which is also very tricky.

Then you have to ask yourself why cool ideas? Why not other ISPs. You can do way more damage bring down mtn or vodacom for example why did they attack cisp.

Very odd.
Click to expand...

It's actually not odd in the slightest.
It's all just spin I reckon. There are other fundamental issues they have that is not as transparent as it should be.
When the same issues become consistent it raises a lot of questions
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X