Proton
Subscribe by RSS

A brief update regarding ongoing DDoS incidents

Proton Team

Share this page

As few weeks back, we sent a notice to the Proton community regarding the DDoS attacks that we have been facing. Today we would like to provide a brief update of the situation.

  • Starting on June 27th, Proton Mail started to be hit by sustained DDoS attacks.
  • The attack campaign continues to this day, but there has been little to no user impact.
  • Thus far the attacks have included:
    • Rapidly morphing DDoS attacks with the combination of SYN floods, TCP handshake violations (first packets are not SYNs), IPv4 TCP SYN floods, TCP Zero Sequence, ACK Floods, NTP nonstandard port floods, and reflection attacks on SSDP, NTP, Chargen, LDAP and Memcache protocols.
    • Pulsed/Burst DDoS attacks, with multiple attack vectors and rapid changes within minutes.
    • Attacks up to 25Gbs in volume. This attack was largely challenging to handle because of its complexity, not the size/volume. No unknown attack vectors were used, but they were rapidly changing, and hence the complexity.

Since November 2015, Proton Mail has been protected by Radware’s Cloud DDoS Protection Services, and in this instance, Radware was able to successfully mitigate nearly all of these attacks. However, due to the nature of the ferocity and attack ingenuity, some of the attacks were only partially mitigated and briefly resulted in some service outages at the outset of the campaign.

In order to improve mitigation performance, Radware immediately upgraded their scrubbing centers and processes to provide better protection against rapidly changing attacks. As a result, attack mitigation through the upgraded Radware scrubbing center has been successful in the past couple weeks.

After the upgrade, we have found that Radware’s technology actually works well against rapidly evolving attacks, and the automatic mitigation capabilities are essential for reducing the response times when coming under attack frequently. We also deeply appreciate the support that we have received from the team at Radware, and the fact that they made defending Proton Mail a priority. Going forward, we plan to utilize a multi-layered DDoS defense strategy and will continue to partner with Radware on the first line of defense.

We appreciate your patience through these attacks and look forward continuing to provide you with secure and private email services.

Protect your privacy with Proton
Create a free account

Related articles

How to delete all photos from Google Photos
Using Google Photos to store and share your pictures means allowing the company to see, analyze, and process them. Many people concerned about their privacy have taken steps to move away from the Google ecosystem, despite the company’s efforts to hid
Proton Wallet
  • Product updates
  • Proton news
  • Proton Wallet
Introducing Proton Wallet – a safer way to hold Bitcoin
WHAT IS PROTON WALLET? Our long-term vision is for Proton Wallet to be a digital wallet that gives you full control of your digital assets. While the type of assets that you can hold in Proton Wallet may evolve over time as we add more capabilities
  • Privacy guides
What is Bitcoin?
Bitcoin is an innovative payment network that leverages peer-to-peer transactions to remove the need for a central bank. Bitcoin has revolutionized the core principles of value exchange by showing that a network of fully independent nodes can operate
Proton Wallet is a digital asset wallet that currently supports self-custody on-chain Bitcoin. In this article, we review the key features and security architecture that make Proton Wallet a private and secure wallet that is as easy to use as email.
proton scribe
Most of us send emails every day. Finding the right words and tone, however, can take up a lot of time. Today we’re introducing Proton Scribe, a smart, privacy-first writing assistant built right into Proton Mail that helps you compose and improve yo
People and companies are generally subject to the laws of the country and city where they are located, and those laws can change when they move to a new place. However, the situation becomes more complicated when considering data, which can be subjec