Tor networks hit by wave of DDoS attacks

News
By published

Attacks on Tor have been ongoing for several months

DDoS attack
(Image credit: FrameStockFootages / Shutterstock)

For the past seven months, anonymous communications platform Tor has been experiencing different types of Distributed Denial of Service (DDoS) attacks causing outages and slowdowns for users, the company has revealed.

In a company blog post, Tor project executive director Isabela Dias Fernandes said the attacks would be sometimes be so severe that users would experience slow page loads, or in more extreme cases, the pages wouldn’t load at all.

The project’s engineers are “working hard” to tackle the problem, she added, but also said that the methods and targets change over time, forcing the project to adapt as the attacks continue. 

I2P attacked, too

So far, no one stepped forward to claim responsibility for the attacks, and Tor was not able to determine the attackers’ identities, or motives. “We will continue to increase and tweak defenses on the Tor network to combat this problem,” Fernandes concluded. 

While Tor might not know who is behind the attacks, users suspect nation-states might have something to do with it, mostly because another similar project has been experiencing similar aggravating circumstances. 

BleepingComputer also reported that the peer-to-peer network Invisible Internet Project (I2P) has also been under heavy DDoS attacks, for at least three days. The attacks forced some i2pd routers to crash with out-of-memory errors, rendering the service poor, or completely unusable, to some users. 

Read more

> DDoS is fast becoming a potent weapon for cybercriminals

> DDOS attacks: how to protect your business against them

> Tor vs VPN: the web privacy shootout

"As you already know, the I2P network has been targeted by a Denial-of-Service attack for the past ~3 days. The attacker is flooding the network with malicious floodfill routers, which are responding incorrectly or not at all to other routers and feeding the network false information," the project announced in a Reddit thread. 

"This results in performance and connectivity problems, because the floodfills provide peer information to the participants in the network. The result is a form of sybil attack which is used to cause widespread denial of service. This attack has degraded the performance of the network but it remains intact and usable. Java I2P routers still appear to be handling the issues better than i2pd routers. Various mitigations should appear in dev builds of both Java and C++ routers in the next week."

Via: BleepingComputer

Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
DDoS inscribed on a digital background made up of numbers
DDoS attacks take down game studio servers, causing DayZ and Arma network outages
Web DDoS attacks see major surge as AI allows more powerful attacks
An image of network security icons for a network encircling a digital blue earth.
Standing strong against hyper-volumetric DDoS attacks
A VPN runs on a mobile phone placed on a laptop keyboard
Major new online tunneling vulnerability could put millions of devices at risk
DDoS attack
Japan’s largest telco NTT Docomo disrupted by DDoS attack
The X logo next to a silhouette of Elon Musk
Who was really behind the massive X cyberattack? Here’s what experts say about Elon Musk’s claims
Latest in Security
NordProtect logo
Standalone identity theft protection from Nord Security is now available
A man holds a smartphone iPhone screen showing various social media apps including YouTube, TikTok, Facebook, Threads, Instagram and X
Ofcom cracks down on UK tech firms, will issue sanctions for illegal content
3d rendering of a submarine power cable on the seabed
Subsea internet cables can now ‘listen’ for sabotage using irregular pulses of light
Dark Web monitoring
A worrying critical security flaw in Apache Tomcat could let hackers take over servers with ease
A graphic showing someone on a tablet working through a supply chain.
Security issue in open source software leaves businesses concerned for systems
ransomware avast
One of the most powerful ransomware hacks around has been cracked using some serious GPU power
Latest in News
Garmin Instinct 3
A new Garmin study hints at the link between burning calories and happiness, and I've got good and bad news
A woman sitting in a chair looking at a Windows 11 laptop
Microsoft is supercharging Windows 11’s voice commands on Copilot+ PCs with Snapdragon CPUs, and fine-tuning a few Recall features
MacBook Air M4
Apple's rumored foldable iPad tipped to launch sooner than expected with an exciting software twist
A phone displaying the Google Messages logo
Google Messages could finally be getting this WhatsApp-style group chat feature
Four operators survey Verdansk. One holds a sniper rifle, one binoculars, another holds is landing with their parachute, while the last wears a skull mask
Verdansk returns to Warzone in a matter of weeks and I’m dreaming of the return of two iconic weapons - here’s what you need to know about its release date and what to expect
The Future Games Show Spring Showcase
The Future Games Show returns this week for its Spring Showcase, here's how to watch and what games to expect
More about security
Dark Web monitoring

A worrying critical security flaw in Apache Tomcat could let hackers take over servers with ease
NordProtect logo

Standalone identity theft protection from Nord Security is now available
Four operators survey Verdansk. One holds a sniper rifle, one binoculars, another holds is landing with their parachute, while the last wears a skull mask

Verdansk returns to Warzone in a matter of weeks and I’m dreaming of the return of two iconic weapons - here’s what you need to know about its release date and what to expect
See more latest
Most Popular
Four operators survey Verdansk. One holds a sniper rifle, one binoculars, another holds is landing with their parachute, while the last wears a skull mask
Verdansk returns to Warzone in a matter of weeks and I’m dreaming of the return of two iconic weapons - here’s what you need to know about its release date and what to expect
The Ryzen AI Max+ 395 could power the latest generation of powerful mini PCs
The AMD Ryzen AI Max+ 395 dominates as the "most powerful" APU on the market, but its competition is questionable
Garmin Instinct 3
A new Garmin study hints at the link between burning calories and happiness, and I've got good and bad news
Roku TV on wall in living room setting
Roku tests showing ads before you even reach the home screen, and it's infuriating users
Dark Web monitoring
A worrying critical security flaw in Apache Tomcat could let hackers take over servers with ease
A phone displaying the Google Messages logo
Google Messages could finally be getting this WhatsApp-style group chat feature
MacBook Air M4
Apple's rumored foldable iPad tipped to launch sooner than expected with an exciting software twist
The Future Games Show Spring Showcase
The Future Games Show returns this week for its Spring Showcase, here's how to watch and what games to expect
Apple iPhone 16 Plus Review
Apple expert just tipped a load of iPhone 17 upgrades: here are 7 things we’ve learned
A woman sitting in a chair looking at a Windows 11 laptop
Microsoft is supercharging Windows 11’s voice commands on Copilot+ PCs with Snapdragon CPUs, and fine-tuning a few Recall features