from Hacker News

CF continues to investigate ongoing impact caused by unusual traffic activity

by geephroh on 9/28/23, 5:00 PM with 1 comments

  • by geephroh on 9/28/23, 5:16 PM

    We've been seeing 5xx errors ever since this incident started on 9/24. The really strange part is that it is only affecting one of our subdomain properties, where we were experiencing intermittent downtimes every six hours or so that would last anywhere from a few minutes to around two hours.

    It seems like we resolved the problem, by blocking an ASN in Singapore (16509 - AMAZON-02) that hosted Bytedance IPs spraying us with spider requests. But of course, correlation always implies causation[1].

    I'd be curious if any other CF customers have seen anything similar?

    [1] https://xkcd.com/552/