Get in touch

Get in touch

  • This field is for validation purposes and should be left unchanged.

Privacy Notice

X

When you submit an enquiry via our website, we use the personal data you supply to respond to your query, including providing you with any requested information about our products and services. We may also email you several times after your enquiry in order to follow up on your interest and ensure that we have answered your it to your satisfaction. We will do this based on our legitimate interest in providing accurate information prior to a sale. Your enquiry is stored and processed as an email which is hosted by Microsoft within the European Economic Area (EEA). We keep enquiry emails for two years, after which they are securely archived and kept for seven years, when we delete them.

Reveal Menu

Did a DDoS Kill Facebook? What is a DDoS – and How can it be Prevented?

#facebookdown #instagramdown #whatsappdown – you can’t fail to have seen these hashtags over the past 24 hours.

But because Facebook, Instagram and Whatsapp are all part of the same business and were all affected, you’d need to hop over to another social media platform, such as Twitter or Reddit, to be able to read them.

So what happened? Parent company Facebook has yet to offer an explanation for the “partial outage”, which left billions of people across the globe disconnected.

As well as Facebook itself, both its instant messaging apps, Facebook Messenger and Whatsapp, were affected, along with image sharing platform Instagram.

If you were able to log in to your account at all, you might have found it more difficult to post any content – especially where sharing pictures and videos were concerned.

The propblems lasted more than 14 hours and, needless to say, the meme-makers over at Twitter were working overtime:

The joys of social media in 2019! And this one…

What did we do before Facebook? The last time Facebook suffered such a setback was in 2008, when the site had 150 million users. That compares with about 2.3 billion monthly users now.

And while your Auntie Gladys might not have been able to upload videos of her new kitten, the effects were far more serious for businesses who rely on the network for trade.

As well as hosting content on Facebook and Instagram, both platforms are essential for marketing and sales in today’s business marketplace.

Whatsapp and Facebook Messenger are also increasingly used for business conversations. Why send an email when you can ping an instant message from your smartphone – and get a receipt to tell you when it’s been read?

One theory for the outage is that Facebook and its other platforms were subject to a DDoS – or Distributed Denial of Service – attack.

This was firmly denied by Facebook (writing on Twitter). It said:

But, naturally, that didn’t satisfy some Twitter users. Conspiracy theory? What conspiracy theory? Here’s what one tweeter thought:

Whether you believe Facebook or the conspiracy theorists, one thing for sure is that the outage caused serious problems for its users.

So what is a DDoS attack? Essentially, it’s a cyber attack in which hackers use computer networks they control to cause mischief.

The networks send such a large number of requests for information to websites that the servers hosting them can no longer handle the traffic, meaning the sites become unreachable.

Security firm Cloudflare claims that the average cost of a DDoS attack to an organisation is about £75,000 for every hour the attack lasts.

Steps can be taken to prevent DDoS attacks, such as buying more bandwidth, configuring hardware to block certain ports, and protecting DNS servers.

But such steps are notoriously tricky, and not guaranteed to work. CertiKit director Ken Holmes warned: “There isn’t a silver bullet to prevent DDoS attacks. It’s just about assessing the risks and doing what you can to put in place appropriate controls, which can be expensive.”


More ISO Resources

CertiKit is a provider of ISO toolkits, consultancy and internal auditing services, and has helped more than 4000 organizations worldwide with their compliance.

For more guidance on implementing the ISO standard of your choice, go to our guidance pages where you can find more specific information about each standard and more downloadable resources.

More ISO Guidance

We’ve helped more than 7000 businesses with their compliance

Testimonials

Compared to competing toolkits, your ISO27001 document structure was very good. The provided "Introduction" of each was useful (I have moved those out of the core documents and into a more comprehensive manual) for the general audience vs security staff. The inclusion of references to 27017 and 27018 were appreciated. You provided more "ISMS-C" oriented artefacts than competitors.

Trusted By Design Inc.
Canada

View all Testimonials