Cyber Incident Victim: Cedexis

On May 10, 2017, a distributed denial-of-service (DDoS) attack targeted Cedexis, a Portland-based content delivery optimization provider, causing significant disruptions to multiple French news websites and other online services. The attack commenced at approximately 2 pm GMT, overwhelming Cedexis’s infrastructure with unexpected traffic from multiple sources, a hallmark of DDoS incidents. This resulted in a partial but widespread outage affecting customers relying on Cedexis’s services to accelerate content delivery. Major French media outlets including Le Monde, Le Figaro, and L’Obs experienced downtime, alongside several unspecified manufacturing websites. Cedexis confirmed the attack was unique and sophisticated in nature, exploiting its globally distributed networks spanning Paris and Portland. The company reported that three of its five content delivery networks (CDNs) were rendered inoperable during the incident, directly impairing its ability to route traffic efficiently for clients.

Cedexis prioritized service restoration, implementing mitigation measures to counteract the attack while publicly acknowledging customer impact through statements and Twitter updates. By the time of their Twitter confirmation, all services had been restored, though the company maintained ongoing monitoring to ensure stability. The outage occurred days after French President Emmanuel Macron disclosed that his presidential campaign had been compromised by phishing attacks, though no direct connection between these events was established in available reports. Technical specifics regarding the attack’s scale, duration, or exact vectors were not disclosed by Cedexis. The incident underscored the operational risks posed by third-party service dependencies, as the disruption to Cedexis’s infrastructure cascaded to diverse sectors including news media and industrial entities without requiring direct targeting of those endpoints.