All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
DDoS Effecting AVS ISP
Hello,
We are facing right now a massive DDoS that is hitting all of our locations at the same time. We are entirely offline in multiple locations. We are attempting to get things back online as quickly as possible, but there isn't much we can do.
Attack is hitting several TB/s and several Gpps in total across locations.
NL seems to be online and is being scrubbed by GSL - UK seems to be running scrubbing as best as it can.
AL and MK are entirely offline.
We have no updates at this time. Please do not submit tickets or email asking about things being offline - our teams are per-occupied with attempting to mitigate the attacks and you may not receive a reply until it ends. Time taken for tickets and emails is time taken from mitigation efforts at this time.
Thank you for understanding.
Comments
Ticket submitted, thanks!
Submitted 45 work orders & am losing millions (of packets)
@avsisp is it Iran
Just nullroute. Attackers take satisfaction from scrub efforts, change tactics, play games. Null route, wait for 12 hours.
Interesting coincidence with the RS-Computers merger.
You break my IP spoofing heart
I am losing gazillions of Zimbabwean dollarz in Albanique location.
UPDATE: Everything is back online and rerouted over GSL scrubbing centers.
We will update anyone who submitted tickets or emails shortly.
Thank you for your patience and understanding.
Not likely.
Attacker is believed to be based in Russia and be government affiliated.
Right before the attack began, we started to get reports of some of our IPs being blocked in Russia. Not long after, we had a flood of port scans from Russian IPs. And following this, the attack began with Russian origin traffic before moving to global. The attack also first targeted NL - where we host a few Russia based VPN services and anti-censorship services.
Attacks of this scale, in the TB/s & multiple-Gpps tend to be nation-state actors or those affiliated with them in some manor.
Though we can't confirm details at this point and it's just a hunch based on the events leading up to the attack - we do NOT believe this to be Iranian sourced.
Nullrouting leaves our clients offline. We pay for professional mitigation services like GSL and Pletx for a reason - to not have clients offline. If you nullroute, you just give them the win.
Coincidence it is - the merger has been ongoing for months now and the clients being moved has been 3 days ongoing. It's just a coincidence - nothing more. And RS prefixes were NOT targeted at this time.
Thanks God for having Russia like it is, so that we can blame for our incompetence and everything
i mean, government state sponsored to attack you? Cmon, do you really think that we are that delusional?! And who is "we"?
Then it's just competitors because there are hundreds of services like that.
Basically it's impossible to use the internet there without VPN, just like in China and Iran.
How every attack is supposedly a state-sponsored act nowadays 😅