(Resolved) 2016-10-12 20:45 UTC: Degraded performance due to DDoS attack

Last updated: Sat Apr 22 00:23:09 GMT 2017

Beginning at approximately 20:45 UTC on October 12th, the ThousandEyes platform experienced multiple distributed denial of service (DDoS) attacks over the course of several hours. During this period, response times from app.thousandeyes.com and other resources in the thousandeyes.com domain were longer than normal, or connections may have failed altogether.  Data uploads from all Agents to ThousandEyes collector were also affected. Once the attacks ended, Agents began uploading locally cached test data.

Service disruptions visible at the following URLs:

  • APP: https://jjmpfrt.share.thousandeyes.com
  • API: https://ssgbvihf.share.thousandeyes.com

The list below indicates service status over the course of the event.

  • 2016-10-13 01:50 UTC Services fully operational again.
  • 2016-10-13 01:30 UTC Transit provider changes complete.
  • 2016-10-13 00:15 UTC Working with transit provider to mitigate new attack.
  • 2016-10-12 23:00 UTC DDoS attack resumed. Attack characteristics have changed to try to circumvent our DDoS countermeasures. Possible service delays.
  • 2016-10-12 21:20 UTC mitigation has been completed and was successful.  Service restored. Agents will begin uploading data.
  • 2016-10-12 21:15 UTC mitigation has been deployed and service is beginning to be restored.