For the past several days, this blog has been a target of a DDOS attack (Distributed Denial-of-Service) which put the site to a crawl.
According to our data center, the DDOS attack was targeted to this domain alone (not the main server IP) so this is obviously a targeted attack at us. We don’t have any idea to the attacker but we have tried a lot of ways to mitigate this.
As a result, you may have experienced the site to load very slowly or completely unviewable.
To those who still cannot access the blog at the moment, I suggest subscribing to the RSS Email blast here (it’s hosted separately by Feedburner and is not affected by the attack).
YugaTech.com is the largest and longest-running technology site in the Philippines. Originally established in October 2002, the site was transformed into a full-fledged technology platform in 2005.
How to transfer, withdraw money from PayPal to GCash
Prices of Starlink satellite in the Philippines
Install Google GBox to Huawei smartphones
Pag-IBIG MP2 online application
How to check PhilHealth contributions online
How to find your SIM card serial number
Globe, PLDT, Converge, Sky: Unli fiber internet plans compared
10 biggest games in the Google Play Store
LTO periodic medical exam for 10-year licenses
Netflix codes to unlock hidden TV shows, movies
Apple, Asus, Cherry Mobile, Huawei, LG, Nokia, Oppo, Samsung, Sony, Vivo, Xiaomi, Lenovo, Infinix Mobile, Pocophone, Honor, iPhone, OnePlus, Tecno, Realme, HTC, Gionee, Kata, IQ00, Redmi, Razer, CloudFone, Motorola, Panasonic, TCL, Wiko
Best Android smartphones between PHP 20,000 - 25,000
Smartphones under PHP 10,000 in the Philippines
Smartphones under PHP 12K Philippines
Best smartphones for kids under PHP 7,000
Smartphones under PHP 15,000 in the Philippines
Best Android smartphones between PHP 15,000 - 20,000
Smartphones under PHP 20,000 in the Philippines
Most affordable 5G phones in the Philippines under PHP 20K
5G smartphones in the Philippines under PHP 16K
Smartphone pricelist Philippines 2024
Smartphone pricelist Philippines 2023
Smartphone pricelist Philippines 2022
Smartphone pricelist Philippines 2021
Smartphone pricelist Philippines 2020
Abiel says:
I don’t see any reason why would somebody will try to attack this blog? Any secret plan in taking over the web? :)
heckiboi says:
minsan ayaw mag load ng pages kahit ok naman yung connection ng internet ko… yun pala may DDOS attack
Gilbeys Caronongan says:
Same attack used by hackers in Twitter and Facebook few years ago.
Andre Marcelo-Tanner says:
firewall, if its dynamic ip, either you have a mitigation service which can block traffic that looks malicious at your provider, or well you try to just handle the traffic. If you run apache its really hard to handle, better if you use NGINX since it can handle tons of connections easily.
Here’s a script I use which blocks ips with more than 200 connections using iptables. You can run that one a cronjob :) It might work
/bin/netstat -npa –inet | /bin/grep :80 | /bin/sed ‘s/:/ /g’ | /bin/awk ‘{print $6}’ | /bin/sort | /usr/bin/uniq -c | /bin/sort -n | while read line; do one=`echo $line | /bin/awk ‘{print $1}’`; two=`echo $line | /bin/awk ‘{print $2}’`; if [ $one -gt 200 ]; then /sbin/iptables -I INPUT -s $two -j DROP; fi; done; /sbin/iptables-save | /bin/grep -P ‘^-A INPUT’ | /bin/sort | /usr/bin/uniq -c | /bin/sort -n | while read line; do oneIp=`echo $line | /bin/awk ‘{print $1}’`; twoIp=`echo $line | /bin/awk ‘{print $5}’`; if [ $oneIp -gt 1 ]; then /sbin/iptables -D INPUT -s $twoIp -j DROP; echo $twoIp; fi; done
CheLauno says:
@abeolandres whoever did it obviously has hidden agenda. Or sobrang naiinggit lang talaga sayo. You’re Philippines’ TechMan after all,
yodz says:
hmm, that’s why I can’t access this site a few days ago. I thought you’re doing a site maintenance.
Well I guess, you’re site is really famous now – that’s why they’re doing it!
RaGe Einzeln says:
i thought it was just my DNS configuration on my router…but so far it’s fine…
inggit lang yan…
tantra2gadget says:
Kya pala this past few days when i tried to access this blogs its always display’s n0t found or unable to connect using my pc and m0bileph0nes
s0mebody might want to rule your blog sir abe…
Because of your blogs popularity
Mga walang magawa,hehehe mga inggit lang sila sir abe !
M0re power to you yugatech blog!
JP says:
I myself thought the site’s bandwidth was being congested. Guess your site can be defaced if the hacker means business.
Karl Ramport says:
My site was DDoS on and off for 3 weeks,
it killed my business !!!
Somebody has to do something about these DDoS
attacks
I eventually had to subscribe to a DDoS protection service called dosarrest, great service and have had no problems since.
Elbert Lo says:
Perhaps a move to a resilient blogging platform like squarespace.com help?
lolipown says:
@Karl Ramport
You can pay for DDOS protection but it will break the bank
@Elbert Lo
Not going to be much help if it’s the flooding of requests that’s making the server crawl, not the software that’s running the blog.
Pedro says:
I thought the problem was my internet service provider, oh well…
those creeps who had done this sucks… bigtime… :p
Guy says:
well, if you’re sick and jealous, that’s reason enough to do such sickly act.
Jhay says:
A mirror site could help. I wonder who would be the next target? We would probably never know who it was and why they did it.
jan says:
yeah, this site is very slow
Ernie says:
@abe Talagang ganyan sa showbiz Abe! Masanay ka na…iba na ang sikat!:D
Harley says:
wow, i really thought that that was the philippine website problem…well at least i know now…keep things interesting always! thanks for keeping us updated!
john alvero says:
Aside from the script that Andre suggested, you can also go for an apache module mod_limitipconn or if you want to block traffic even before it reaches apache you can go for a netfilter extension namet iplimit. If you have that patch already the command should look something like this:
iptables -A INPUT -p tcp –syn –dport http -m iplimit –iplimit-above 10 -j REJECT
Olmi says:
Good suggestions, Anre and john alvero. Abe, good thing your site is loading OK, now. Well, at least here at my end.
Reel Advice says:
I thought it was a server/ISP problem for the past few days. Shame on whoever did this but this could also be a sign of your celebrity status!
Abe Olandres says:
Hi guys! Thanks for the suggestions. With the help of our DC Engineers, we’ve actually done most of the suggestions you gave as first preventive measures. This is also the reason why some Ips are being blocked from certain IP segments because of the connection limits we’ve put in place.
Someone from Verisign also contacted me and another provider offering their anti-DDOS services and I’m contemplating on getting them.
Knee Loat says:
yeah… i noticed your blog loads slowly than the other sites that i visit… hmmmm
google says:
Welcome back Abe! How’d you get over it?
squishy says:
why don’t they nuke a site like filipina.com? those hackers should have some ethics in employing DDoS attacks.
filipina.com is outrightly insulting. the domain name must be bought for our own honor.
Anthony Rodeli dC Guanio says:
Why would anyone wanna Hack you guys? You need a guy to do offensive security.
flyah says:
As I can see, you are using Cpanel on your server. Why not use Litespeed to replace Apache?
Litespeed handles DDOS very well. and RAM consumption is a bit low compared to httpd.
But its a bit expensive as the licenses is per CPU Core basis.