Pro-Iran crew turns DDoS into shakedown as Ubuntu.com stays down
Canonical, the company behind Ubuntu, is experiencing a sustained DDoS attack attributed to the pro-Iran hacktivist group 313 Team, which has disrupted access to Ubuntu.com and related services. The group has shifted from hacktivism to extortion, demanding contact via a private messaging service to potentially halt the attack. Canonical's teams are working to restore services while urging users to monitor official channels for updates.
- ▪Canonical confirmed its web infrastructure is under a cross-border DDoS attack disrupting Ubuntu.com and several subdomains.
- ▪The pro-Iran hacktivist group 313 Team, also known as The Islamic Cyber Resistance in Iraq, claimed responsibility for the attack.
- ▪The group issued an extortion message via Telegram, instructing Canonical to contact them through a Session ID to stop the assault.
- ▪The attack began with a four-hour threat but has continued for over 12 hours, affecting downloads and user logins.
- ▪Some Canonical services, including Archive and Discourse pages, remain accessible despite the ongoing disruption.
Opening excerpt (first ~120 words) tap to expand
Cyber-crime 10 Pro-Iran crew turns DDoS into shakedown as Ubuntu.com stays down 10 313 Team tells Canonical: pay up or the packets keep coming Connor Jones Fri 1 May 2026 // 11:05 UTC Canonical says its web infrastructure is under attack after a pro-Iran hacktivist group instructed its members to target the open source giant. "I can confirm that Canonical's web infrastructure is under a sustained, cross-border Distributed Denial of Service (DDoS) attack" a Canonical spokesperson told The Register. "Our teams are working to restore full availability to all affected services.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at Theregister.
Discussion
0 commentsMore from Theregister
