20 comments

[ 2.9 ms ] story [ 51.7 ms ] thread
Maybe...but it was green a couple of times on March 27 as well. Time will tell.
I think it's more they're no longer worried about it evolving any more.
They're still hiding behind Prolexic/Akamai. I suspect the attacker is waiting for them to drop that protection.

From a state sponsored attacker I would have expected to see a BGP attack..

A BGP attack would be a whole new level of "This is war", probably with a bit more consequences.
Does anybody have any wider context regarding this attack? Is it the first time a massive DDoS like that was mitigated, with just minor disruptions to the victim?
Not by a long-shot; this was reported as a big deal (and I'd love to have more insight and data available), but this kind of thing has been going on for many years.

Ask your local DNS admin for some war stories. :-)

It also gained notoriety because it seemed like an attempt by a Chinese actor (possibly the PRC) to force Github to take down two repositories that helped to circumvent the Great Firewall.

Github itself has weathered DDoS attacks before, but I'm not sure how different this attack was in scale.

I'm also unable to access the two repos that were apparently the target of the PRC's ire: https://github.com/cn-nytimes and https://github.com/greatfire

Is this simply a temporary precautionary measure because of the initial JS DDOS, or has GitHub permanently taken those two repos down?

If it's the latter, then I'm really disappointed and it would seem the PRC was able to get what it wanted.

Both repos are still up and accessible from my end (India).
They're there for me (I'm in the US-midwest.)
Interestingly, GitHub seem's to be allowing logged-in users to access those pages, but using a incongnito tab shows unicorns. I'm guessing they've just disabled access for unauthenticated requests.
Aha, you're right! Same behavior for me.