Distributed denial of service (Ddos)

A customer of mine learnt the hard way why cheap domains registration isn’t worth it and why disaster recovery plans are essential. The domain registrar who holds all of their domain names on their domain name servers went offline following a ddos attack, taking their website and email service with it.

Hundreds of other business owners who had also registered through the same service found themselves in a similar position.

Even if the service is resumed today, a certain amount of business will have been lost due to website unavailability or bounced email. But what if it isn’t resumed today, what if it takes days or weeks? What would your business do if this happened to you?

Disaster recovery action plan

First steps:

Contact your registrar by phone. This may seem obvious but if they are under attack, their own systems may be down so emailing support@ will not work!

Ask them for a solution. They may be able to move you to an alternative server.  Certainly, if this is the first time the service has failed, you don’t necessarily want to move your business away.

Find alternatives. Do your homework! Which registrars have a good solid reputation? (By the way, any size registrar can be hit with an attack, but the smart ones will have their own recovery plans in place). Choose another registrar and ask them for their IPS-tag.

Contact your existing provider and ask them to arrange a transfer out. They’ll need the IPS-tag for the new provider to do this.

Seek emergency help. If you are unable to reach or achieve a resolution with your current provider, call Nominet (the UK governing body for domain registration). Note, they can only help with UK ccTLDs (country code top level domains), e.g. .uk.

This will only help with domains. I trust you have a website files backup?