UK2.NET says it has recovered from Wednesday's DDoS attack

Web Host UK2.NET Recovers from Major DDoS Attack

2 comments

UK web hosting provider UK2.NET was hit by a major DDoS attack on Wednesday night, a report by The Register says.

Managing director at UK2.NET Martin Baker told The Register on Thursday that it had never seen a DDoS attack of this scale on its network. According to Baker, UK2.NET saw around 10 million unique IPs attack last night.

The botnet attack its DNS servers, so sites were up or down depending on when requests for pages were made, Baker says.

Customers started to see problems in the afternoon, but the peak of the attack was around midnight. UK2.NET says it was able to get it off its network at around 3 am.

Since UK2.NET has dealt with DDoS attacks before, it should have a better system in place for communicating issues with customers. Its Twitter status page only shows two updates from the past 7 hours, and only one other tweet addresses three customers about the issue. In that tweet, it directs customers to its status page, which is also quite sparse. The latest update on its status page says the intermittent access to DNS was rectified last night and it only affected a “small number of domains using these servers for DNS lookups.”

In a recent report, DDoS protection firm Prolexic Technologies said it is crucial for companies to have a “playbook”, or a rehearsed and tested plan that outlines who in an organization needs to be involved in the event of a DDoS attack, and a detailed communication strategy.

Web hosts can partner with DDoS mitigation providers to help keep customer sites secure. Recently, DDoS protection provider Black Lotus launched its reseller program for web hosts, and on Tuesday, Fortinet launched its FortiDDoS product suite for web hosting and cloud providers.

In April 2011, private equity firm Lloyds TSB Development Capital acquired a majority stake in UK2 Group in a transaction valued at about $77 million.

Talk back: What have you learned from mitigating your own DDoS attacks? How do you communicate DDoS attacks to customers? Let us know in the comment section.

About the Author

Nicole Henderson is the Editor in Chief of the WHIR, where she covers daily news and features online. She has a bachelor of journalism from Ryerson University in Toronto. You can find her on Twitter @NicoleHenderson.

Add Your Comments

  • (will not be published)

2 Comments

  1. Jan, You hit the nail on the head regarding most hosts being unable to afford a high capex investment. The DDoS mitigation service industry is growing by leaps and bounds and there are now more than a dozen or so viable solutions for small to medium web hosts. An industry that was once quite small is now quite competitive, thus pushing prices downward.

    Reply
  2. Jan Kalthoff

    Always keep in mind: Its not a question if, its a question when (you get attacked)! So be prepared and get in touch with the mitigation solutions (and found bottlenecks) in your own or Host/Upstream Provider Infrastructure _before_ the first attack saturate your Equipment. Off course there are great Inline or BGP Off-Ramp Dedicated DDoS Hardware Solutions (f.e. http://www.riorey.com) to address even up to 10Gbps@28Mpps Attacks but for a lot of Companys and smaller Providers such an High CAPEX Investment is not possible. But more and more Clients request intelligent protection on-demand but only for a few bucks/month. As a result what will Happen in the mixed, motivated & flexible Market, will only Big Hosting or CDN/Cloud Infrastructures Provider survive and we see a New "Telco Monopole"? After dealing with DDoS Attacks since a few years my personal conclusion is: The Internet has lost its Glamour and its more like a battlefield which is more annoying to operate from year to year. I'm already missing the glory golden hosting times! Cheers Jan P.S.

    Reply