Pro-Iran crew turns DDoS into shakedown as Ubuntu.com stays down

https://www.theregister.com/2026/05/01/canonical_confirms_ubuntu_infrastructure_under/

26•ndsipa_pomu•1h ago

Comments

SeanAnderson•49m ago

... but https://ubuntu.com/ is up?

CamouflagedKiwi•44m ago

Not for me, I'm not getting any response from it.

ramon156•41m ago

Been down most of the day for me, as well as a bunch of related domains. Canonical's status page has them linked

z500•39m ago

Loads for me, but not particularly quickly

_DeadFred_•34m ago

dead here

SoftTalker•33m ago

Not loading for me right now.

sureste•26m ago

It's loading, but very slowly.

Lambdanaut•35m ago

Does anyone know why Ubuntu would be targeted by pro-Iranian activists? I'm perplexed by the connection.

at-fates-hands•27m ago

Canonical is a UK company, so its a symbolic attack against a Western agent. Ubuntu is used by a lot of tech companies so they knew this attack would get a lot of visibility in the tech community. I'm assuming they think this will garner support from the tech community as well.

shaftoe•23m ago

Exactly as described in "how to win friends and influence people". Break their stuff and extort money.

Gualdrapo•17m ago

Still it feels quite odd that from all western tech companies (and several more influential than Canonical) they chose precisely one that is highly involved with open source

alephnerd•12m ago

Welcome to war. This was why the Qatar attack was so destabilizing.

anotherviewhere•27m ago

You should have seen so many lies about Iran by now to justify the neocolonial war against them: so why do you assume every time some newly reported "fact" about them to be true? Rather, you should assume the opposite.

throwuxiytayq•14m ago

There is such a thing as being too open-minded to form an accurate perception of reality.

b00ty4breakfast•4m ago

I think the saying is "so open-minded your brain fell out"

everdrive•16m ago

Almost certainly a target of opportunity. The UK has really made a point of staying out of this fight, but is also seen as a close ally of the US. Perhaps the calculus is:

- Iran was able to attack Ubuntu.com

- Iran sees it in its interests to stress the UK / US relationship (albeit in a small way)

b00ty4breakfast•50s ago

It's a well(ish) known org with well known product. If they had attacked a deli in Newark, would we be having this conversation?

54lasgf•33m ago

This is really a weird target, as the article notes. Bluesky and Mastodon (?!) also had alleged attacks.

The companies that fund Trump's ballroom might like these targets.

gpm•19m ago

Bluesky and mastodon both strike me as easy targets, they expose protocol level integration points that are probably reasonably expensive to serve and reasonably difficult to detect malicious actors on and/or throttle without significantly degrading the service.

I could see low budget attackers deciding that they were the most (not very much) bang for the (also not very much) buck that they could get...

Ubuntu.com doesn't fit that narrative though. I would have thought canonical would have the servers and skill to weather quite a large attack (on the other hand it did go down...)

CivBase•24m ago

> Why the group is targeting London-based Canonical remains unclear and no reason was given via its Telegram channel. It is presumably because Ubuntu is one of the most popular Linux distros.

Okay... so? I do not understand the connection between Linux and the US/Israel. You'd think Iran would be very pro-Linux since Windows is a very obvious liability for them.

Is there any reason to believe this attack even has anything to do with Iran? They could simply want money and they just happen to also be pro-Iran.

tempaccount5050•19m ago

Maybe they're still mad about systemd.

alephnerd•10m ago

> I do not understand the connection between Linux and the US/Israel. You'd think Iran would be very pro-Linux since Windows is a very obvious liability for them

Canonical is a British company and the employees are westerners.

jcgrillo•10m ago

just now:

  $ snap refresh
  error: unable to contact snap store

Elon-Altman Emails Visualized

Show HN: ProjectHQ – Command Center for Your SaaS

Ten years of sakamoto.pl: my thoughts and wishes

I Don't Vibe Code

Unprecedented in 66M Years

To buy this Bay Area home, you'll need Anthropic equity

Regarding cybersecurity, AI is our best hope in a profession that lacks hope

Physicists have measured 'negative time' in the lab

Fortress

Tell HN: Claude account suspension for flagging duplicate billing

DY* Unchained: Composable Security Proofs and Precise Compromise Scenarios

Tell HN: Happy May Day

Build an AI edge your competitors can't copycat

Space Stack: The Space Power Infrastructure

More cores, less cache: Cloudflare's servers got slower until a stack rewrite

Pragmatic Haskell: Building a Microservice Template That Does Things

Why my macOS Messages badge lied to me (and the one-line fix)

RFC: Account creation policy for web agents

Pcybox Orbis – Real-time network traffic visualizer for Windows

US debt is now bigger than the economy for first time since World War II

Apocalypse Early Warning System

Police Have Used License Plate Readers at Least 14x to Stalk Romantic Interests

Bonsai: The First Commercially Viable 1-Bit LLM

"Show more" in Google search causes high Firefox GPU usage

Where AI capability stops and organisational reality takes over

Red Button vs. Blue Button

Show HN: Access OPFS from multiple tabs using a fake Shared Worker

Ask HN: GitHub flagged my org two weeks ago. No reason given, no appeal response

Backup Your iCloud?

Meta abandons open-source Llama for proprietary Muse Spark