What Happened
On the evening of July 13th, 2026, our network was targeted by a sustained Denial‑of‑Service (DoS) attack. In a DoS attack, malicious actors intentionally flood a network with excessive traffic, overwhelming normal operations and preventing legitimate users from accessing online services. According to the Cybersecurity & Infrastructure Security Agency (CISA), these attacks work by saturating systems with junk requests until they cannot respond to real ones, disrupting services such as websites, email, and other internet‑dependent systems.
This particular attack began suddenly and continued without interruption well into the next day. The volume and persistence of the traffic made it impossible for some services—especially inbound email—to function normally during the event.
How We Responded
Within minutes of detecting the attack, our engineering team diagnosed the problem. We worked to deploy a protective network bubble designed to shield customer traffic from the malicious flood. This allowed us to restore general connectivity for most customers quickly, even while the attack continued.
Because of the nature of the protective measures, some services had to be temporarily limited to maintain stability. Inbound email was the most affected, as the filtering and isolation required to keep customer connections online also restricted certain types of external traffic.
Throughout the event, our team continuously monitored network behavior, adjusted mitigation systems, and worked to ensure that customer access remained as stable as possible.
Current Status
As of now, normal connectivity has been fully restored. The attack traffic has subsided, and all services—including inbound email—are operating normally again.
We are continuing to monitor the situation closely. While there is no indication that the attackers will return, DoS events can occur in repeated waves. If another attempt is made, our team is prepared to respond immediately.
What We’re Doing Next
Although this attack originated outside our network, we treat every incident as an opportunity to strengthen our defenses. Over the coming weeks, we will be implementing additional layers of protection designed to:
- Detect abnormal traffic patterns even earlier
- Automatically divert and filter malicious traffic
- Improve resilience for services that are more sensitive to high‑volume attacks
- Reduce the impact of future events on email and other critical systems
We are also reviewing our upstream provider relationships and traffic‑routing strategies to ensure that no single point of failure can disrupt customer connectivity.
Additional Information
For customers interested in learning more about DoS attacks, CISA provides helpful guidance on how these attacks work, why they occur, and how organizations defend against them. In short:
- DoS attacks overwhelm networks with illegitimate traffic.
- They can originate from a single source or from many compromised devices acting together (a Distributed DoS or DDoS).
- Even networks that are not directly targeted can be affected if their upstream providers are attacked.
- Mitigation involves traffic filtering, rerouting, and continuous monitoring.
These events are disruptive, but they are also a known and well‑understood category of cyberattack—and one that modern networks are increasingly equipped to handle.
Thank You
We understand how important reliable connectivity is, and we appreciate your patience during this incident. If you have any questions, please feel free to contact us at (608) 882‑4728.
