Today, 2020-11-26, at around 10:30 CET we became victims of a so-called DDoS attack. This means that a lot of pointless requests from fake source IPs were sent to our servers.
There were so many requests (up to 1 million per second) that our infrastructure was heavily overloaded by this.
Important: This is merely an intentional overload of services, so that they are not usable. There was no security incident and no break-in into our systems.
As a measure against this, the attacked servers were taken off the network and the services were moved to our redundant data center in Zurich.
At about 12:00 noon, some services were available again. Complete, stable functionality was restored at 12:50 pm.
As countermeasures we will optimize our firewall configurations and add DDoS protection from our Internet provider.
We apologize for the failure and the inconvenience caused.
