UK-based bookmaker William Hill has been hit with a DDoS attack, preventing many of its customers from being able to access its main website.
UK-based bookmaker William Hill has been hit with a distributed denial of service (DDoS) attack, preventing many of its customers from being able to access its main website.
The company had, earlier this week, (November 1st) revealed on social media that its website was experiencing “a few technical issues”.
Later, on Twitter, it followed up this message with a tweet saying that it had restored some of its services, adding that they “were still not at 100%”.
Finally, a day later, it revealed what had been behind the incident: “You’ve probably heard about a significant increase in DDoS activity directed at a number of online companies recently, it looks like it’s our turn.
Talking to The Register, a spokesman for William Hill stated: “The online services of William Hill were intermittently impacted during the course of yesterday following distributed denial of service (DDoS) activity by third parties.”
Explaining what a DDoS attack is, an image attached to several of their tweets read: “DDoS activity sends bogus traffic to a website to try and make it too busy to work properly. It’s a bit like sending thousands of people to one of our shops to block the doors and stop genuine customers from coming in”.
As of this morning (November 4th), the issue has yet to be resolved. Responding to queries from some of its customers, it said it “didn’t have a timescale” for resolving the problems. However, it did add that it is working to “have it fixed ASAP”.
William Hill is the latest company to have been targeted with a DDoS attack in recent months. Only last month, numerous websites, including Reddit, Etsy, Tumblr and Twitter were caught up in a major IoT DDoS attack.
Reporting on the event, ESET’s senior security researcher Stephen Cobb said: “We have been shown just how vulnerable the internet, which is now an integral part of the critical infrastructure of the US and many other countries, is to disruptive abuse conducted at scale, by persons whose identity is not immediately ascertainable.
“Until this vulnerability is addressed, it will cast a serious shadow over the future of connected technology, a future in which much hope and massive resources have already been invested.”