Sign Up
BlogNews9TH NOV 2023
AuthorSamir Yawar
4 min read
News

OpenAI, Cloudflare and Sberbank DDoS Attacks dominate headlines

Twitter
Facebook
WhatsApp
Email
LinkedIn
Feature image for a blog post about cybersecurity news roundup.

Cybersecurity experts remain vigilant, as three major firms got hit by Distributed Denial of Service (DDoS) attacks this week. The discovery of OpenAI, Cloudflare and Sberbank DDoS attacks point to the use of new, sophisticated and increasingly effective tools to overwhelm IT infrastructure.

These attacks come against a backdrop of increasing political and economic tensions worldwide.

Cybersecurity News Roundup

We take a look at what made headlines this time.

1. Cloudflare website goes offline
2. OpenAI’s ChatGPT suffers outages
3. Russian state-owned bank Sberbank goes offline after powerful cyber attack

Cloudflare website goes offline

One of the most extensive networks on the internet, unified web services provider Cloudflare has confirmed that it was the target of a DDoS attack earlier today.

The DDoS attack made it impossible to access www.cloudflare.com. The company clarified that no other products or services were impacted.

A Cloudflare spokesperson had this to say about the current outage:

"Cloudflare’s website is deliberately hosted on separate infrastructure and cannot impact Cloudflare services. To be clear, our website is fully functional and up and running."

Threat group Anonymous Sudan has claimed responsibility for attacking Cloudflare’s website in a Telegram message. The group stated that their attack lasted for one hour.

During the attack, visitors were greeted by “We’re sorry” Google errors while on Cloudflare. The design of the Google logo on this page doesn’t match its existing logo, prompting Cloudflare’s Head of Organic Social Ryan Knight’s observation that it looks “a little off.”

OpenAI’s ChatGPT suffers outages

In a similar incident, popular generative AI tool ChatGPT also faced “periodic outages” due to DDoS attacks on Nov 8, 2023. The attacks targeted its API and services for 24 hours.

Parent company OpenAI stated that the outages indicated a DDoS attack based on an abnormal traffic pattern.

The denial of service attack came after OpenAI faced another major outage on Wednesday that affected its AI image-generation tool Dall-E.

While OpenAI has yet to reveal who was behind these attacks, threat group Anonymous Sudan has assumed responsibility for the outage on their Telegram channel.

The group confirmed using the SkyNet botnet, which significantly strains the target server and network.

Russian state-owned bank Sberbank goes offline after powerful cyber attack

Sberbank, a majority state-owned banking and financial services provider, was hit by a powerful DDoS attack. A press release by the firm confirmed that the attacks happened two weeks ago.

The bank is the largest financial institution in Russia, holding a third of all assets in the country.

Russian news agency Interfax reports that Sberbank’s systems were choked with one million requests per second. For context, this attack was roughly four times bigger than the biggest DDoS attack it had faced previously.

The head of Sberbank had this to say about the attackers:

“We noticed that these are some new hackers. Their fingerprint is not known to us. That is, some new, very qualified criminals appeared on the market who began to systematically attack the largest Russian resources.”


Samir Yawar
Samir Yawar / Content Lead
Samir wants a world where people can instinctively whack online scams and feel accomplished without the need for psychic powers. As an ISC2 member, he is doing his bit to turn cybersecurity awareness training into a fun concept with simple, approachable and accessible content. Reach out to him at X @yawarsamir
A feature image for a blog post about the Toronto Public Library outage, KandyKorn MacOS Malware, Flipper Zero Bluetooth spam attacks.
Read NextToronto Public Library Outage, New MacOS Malware and Flipper Zero Bluetooth Spam dominate headlines
News
FAQsFrequently Asked Questions
DDoS stands for Distributed Denial of Service. A DDoS attack is a malicious attempt to disrupt the regular functioning of a network, service, or website by overwhelming it with a flood of internet traffic. Unlike a traditional Denial of Service (DoS) attack, which is carried out by a single source, DDoS attacks involve multiple sources, making them more challenging to mitigate.
DDoS attacks employ various techniques to overwhelm a target's resources. Two common types include volume-based attacks, protocol attacks, and application layer attacks.
Organizations can implement several strategies to enhance their DDoS resilience while investing in Network Security, Load Balancing, Content Delivery Networks, DDoS Mitigation Services, and Incident Response Plans.