GDS adds second DNS service after malicious attack affects GOV.UK

Written by Rebecca Hill on 16 November 2016 in News

The government’s flagship GOV.UK site was affected by a global distributed denial of service attack on a third party company that also took out Twitter, Spotify and other sites last month.

Under attack: Dyn's DNS services were out of action for a number of sites across the world - Photo credit: Flickr, FabianOrtiz, CC BY 2.0

The attack, which took place on Friday 21 October, caused widespread issues for sites using domain name services (DNS) – which browsers use to identify the IP address of a website – provided by company Dyn.

The outage affected the GOV.UK websites, government blogs and services as well as some third party systems that GOV.UK uses, with the sites being out of action for around three hours..

According to a blogpost from the Government Digital Service’s Dafydd Vaughan, the on-call technicians tried to restore the service by removing Dyn from the infrastructure for the domains with the most users – and

However, service restoration was delayed because the external organisation that runs the domain names couldn’t be sure that the change requests were authorised due to a number of internal systems being down.

Related content

GOV.UK crash ‘not malicious attack’ says Cabinet Office
“Active cyber defence”: UK’s first National Cyber Security Centre chief sets out strategy
Earning public trust in the age of cyber threats

Vaughan said that the incident showed that GDS’ DNS provision was a single point of failure, and that the team had now added a second DNS service to address this.

In addition, he said that a number of the monitoring services GDS uses were affected by the outage, which meant GDS wasn’t alerted properly.

Meanwhile, the usual communications methods GDS uses to let people know about service issues, such as Twitter, were unavailable due to the attack on Dyn.

Vaughan said that GDS was looking into ways to improve its alert processes and other methods of providing people with information on service outages.

A second, related incident, which occurred on Wednesday 26 October, is also discussed in the blogpost.

This saw GOV.UK go down for 25 minutes, with some websites and services unavailable to users.

GDS said this was due to a planned change to the DNS record for the domain name – requested after the incident the week before in an effort to “restore some resilience”.

However, an engineer at the external organisation made an error when changing the DNS record, which resulted in its pointing to something that didn’t exist. The external organisation repaired the error once it was noticed.

Vaughan said that the team had not yet finished reviewing the incident or the way it was handled, but that due to the scale of the issues, it had decided to publish an interim report.

“We’re also working with our colleagues at the National Cyber Security Centre and other parts of government to coordinate our incident management processes and understand the wider government impact,” he said.

Share this page


Add new comment

Related Articles

Group chat an indispensable tool within Whitehall
26 June 2017

Group chat services can make civil servants more efficient by reducing email overload. If government does not embrace them, it will lose out

UPDATED: General election 2017: Manifesto round-up
17 May 2017

After the Tories released their manifesto,PublicTechnology takes a look at the three main parties' plans for digital and technology ahead of next month's general election.

Local election 2017: Changing council colours might not earn digital any go-faster stripes
9 May 2017

Last week’s local elections saw a swing to the Conservatives, with a few successes for Labour in the city mayoral polls. But, if the political landscape has shifted, David Walker says it remains...

Related Sponsored Articles

Impact of AI on UK jobs market divides opinion, says BT survey
14 June 2017

BT finds that IT Directors disagree over whether Artificial Intelligence will create or displace jobs

How big data is helping to transform the defence sector
8 June 2017

Bill Holford explores how big data is changing modern warfare, and argues for a defence big data strategy to ensure we are making the most of the opportunities ahead

Defence in a digital and disruptive era: innovation in IT
8 June 2017

BT looks at turning points within the UK defence sector, the evolving nature of warfare and how new cyber-attacks pose new questions for our national defence