Canonical under sustained DDoS attack as Ubuntu 26 releases — Iranian group 313 Team claims responsibility

Source: Tom’s Hardware

Image credit: Getty Images

Attack Overview

Canonical, the company behind Ubuntu Linux, is currently experiencing a Distributed Denial of Service (DDoS) attack. The attack has been claimed by the Iranian group 313 Team (also known as the Islamic Cyber Resistance in Iraq). The attackers have demanded a virtual meeting with Canonical staff under threat of continued attacks, but no further public developments have been reported.

Impact on Services

• Ubuntu download and update mirrors worldwide are sluggish or down.
• The main Canonical website, Launchpad, the Snap Store, Canonical SSO, and related services are also affected.
• There are no reports of security compromises affecting package repositories or ISO images, so downloads from reputable mirrors remain safe.

Mitigation and Mirrors

If you encounter difficulties accessing Ubuntu 26 or its updates, consider using alternative mirrors:

• Official mirror list:
• Archived mirror list (Wayback Machine):
• Torrent links:
  • Desktop x64 release:
  • Live server x64 version:

Possible Connection to the “Copy Fail” Vulnerability

Some analysts have speculated that the DDoS attack might be linked to the Copy Fail vulnerability, which affects many Linux distributions, including Ubuntu 24. However, this connection appears tenuous; the primary impact of the attack is limited to preventing updates, which can be mitigated by using alternative mirrors or applying known workarounds.