A DDoS in Asia Pacific

UPD: As of July, 13, ordinary service has been restored everywhere, except for mainland China.

Just in case you're not following us on Twitter, Telegram's Asia Pacific server cluster has been under a DDoS attack since morning on July, 10.

This means that if you live in South East Asia, Oceania, Australia or certain parts of India, you may have been experiencing slower connection speeds or no connection at all for several hours that weekend.

What is this DDasdf thing?

DDoS stands for Distributed Denial of Service and means that a lot of computers start making requests to a server, so that the server is slowed down or stops responding. To put this into familiar terms, imagine a thousand people jamming themselves into a bus at 6 PM on a weekday. They get in, you don‘t and that’s all a DDoS attack is.

Unlike on the bus though, the people who are getting in your way don‘t even know they’re doing this. DDoS attacks are carried out by botnets — thousands of computers and servers that were turned into remotely controlled zombies by malware and viruses.

What exactly hit Telegram?

We've been hit with 200 Gbps of junk traffic, which feels roughly like having 200 billion very random people squeeze into your bus every second. For the most part, it was a relatively new type of DDoS known as Tsunami SYN flood, but the attackers have shown some flexibility in their methods and adapted to changes pretty quickly.

The garbage traffic came from about a hundred thousand infected servers, most noticeably, in LeaseWeb B.V., Hetzner Online AG, PlusServer AG, NFOrce Entertainment BV, Amazon and Comcast networks. That said, the attack was distributed evenly across thousands of hosts and none contributed more than 5% of the total volume.

Fighting back would‘ve been a little easier, if the abuse departments in most of the mentioned companies didn’t process requests 9-5, Mon-Fri only. (Hours more befitting a scuba-diving shop in Vatican.)

Who's behind this?

Orchestrating a DDoS attack is a criminal offence in most countries and wouldn't bring good publicity to a company, so attackers usually hide their traces as best they can. It could be an angry government or an unhappy competitor.

By now we know that the attack was being coordinated from East Asia.

What's next?

Attacks on the scale of the one we were facing have become possible only recently and it‘s the first time we’ve met anything like this. But some of us have over 10 years of operating major web-services in Europe under our belts, so don't you worry!

We've managed to stay online for 95% of our users worldwide. And as for defending the affected 5%, we‘ve got quite a few surprises up our sleeve. But we’d rather not talk about them here, since the attackers are certainly reading this as well. (hi there! ;)

So while we can't really tell you any details, we have good reasons to hope that connection will be flawless as usual for 100% of our users again. Take heart and tell your friends. Our sysadmin cyborgs are working on this 24 hours a day.


July 13, 2015
The Telegram Team


다른 뉴스

리치 텍스트 에디터, 커뮤니티, 그룹 내 휘발성 메시지, 3억 5천만 개의 GIF

텍스트를 서식화하고 생성할 수 있는 리치 텍스트 에디터, 여러 그룹, 채널, 봇을 연결하는 텔레그램 커뮤니티, 그룹 내에서의 휘발성인 봇 메시지, 3억 5천만 개 이상의 GIF 검색 등 다양한 기능이 새롭게 도입되었습니다.
7월 14, 2026

스마트워치 앱, 봇을 위한 리치 텍스트, 그룹을 위한 AI 가디언, 그리고 그 외에도 다양한 기능

오늘 업데이트로 텔레그램이 애플 워치와 안드로이드 스마트워치에서 사용 가능해졌으며, 봇을 위한 다양한 서식의 리치 텍스트, AI 관리자가 새로운 그룹 멤버를 심사하는 기능, 더 똑똑해진 투표, 브라우저 제어 등 다양한 기능이 추가되었습니다.
6월 11, 2026

게스트 AI 봇, 봇 간 대화, 대화 자동화, 맞춤형 AI 스타일, 1억 개 이상의 이모지 및 스티커 검색 등 다양한 기능

텔레그램은 사용자가 어떤 대화에서도 AI 서비스를 이용할 수 있는 방법, 봇으로 받은편지함을 자동화하는 기능, AI 텍스트 에디터에서 맞춤 스타일을 만드는 기능, 설문조사에 한도를 설정하고 통계를 볼 수 있는 기능 등 10가지 이상의 새로운…
5월 7, 2026

AI 에디터, 마이티 폴, 라이브 포토, 봇이 관리하는 봇, 그리고 그 외 더 많은 기능

오늘 업데이트에서는 두 번의 탭만으로 텍스트를 번역, 변환 또는 수정할 수 있는 AI 에디터, 미디어 첨부 및 활성 설문에 대한 새로운 응답 제안과 같은 설문조사용 신규 기능, 모든 앱에서 라이브 및 모션 사진 지원, 다른 봇을 생성하고 관리할…
3월 31, 2026