Ubuntu infrastructure down over 24 hours due to DDoS attack
Original: Ubuntu infrastructure has been down for more than a day
Why This Matters
Major Linux distribution provider offline during critical security vulnerability disclosure period
Ubuntu and Canonical servers have been offline since Thursday morning following a sustained cross-border DDoS attack. A pro-Iranian group claimed responsibility using Beam stressor service. The outage affects communication about a critical Linux vulnerability.
Ubuntu and Canonical's web infrastructure has been down for over 24 hours after a DDoS attack began Thursday morning. A Canonical status page confirmed they are 'under a sustained, cross-border attack.' A pro-Iranian group claimed responsibility via Telegram, using the Beam DDoS service that also recently targeted eBay. Affected sites include security.ubuntu.com, ubuntu.com, canonical.com, and developer.ubuntu.com. The timing is problematic as researchers recently released exploit code for a critical vulnerability affecting virtually all Linux distributions, giving untrusted users root access. While Ubuntu's main sites remain down, OS updates continue working through mirror sites. The outage has hampered Ubuntu's ability to communicate security guidance to users about the vulnerability.