April 22, 2014

Typepad under attack, NAFCU blogs affected

April 23, 2014 – Credit unions attempting to access any of the three blogs run by NAFCU have been unable to do so intermittently for several days now due to a series of cyber attacks affecting their host company, Typepad.

This incident is not a data breach. Typepad has been under nearly a week-long barrage of distributed-denial-of-service, or DDoS, attacks, and the NAFCU blogs have experienced varying degrees of down time.

Of the three blogs – the Berger Leadership Blog, Musings from the CU Suite and NAFCU Compliance Blog – the first two appear to have been affected the most. When the sites are down, the user just sees a message that the domain name is unknown, even though the domain name is not the problem.

NAFCU Services also maintains a blog but not through Typepad, and has been unaffected by this incident.

Typepad published an update on the DDoS attacks Monday but has continued to suffer from new attacks, so even that information has been available only between attacks.

A technology media site called Techcrunch says this about Typepad's woes: "The attack appears to be similar in nature to those which have hit several other high-profile tech companies in recent weeks, including Meetup, Basecamp, Vimeo, and others."