Cyber Incident Victim: Blender / blender.org

On March 15, 2021, the official Blender.org website entered maintenance mode following a confirmed hacking attempt targeting its infrastructure. The Blender team announced the incident via their official Twitter account, disclosing that the attack prompted immediate downtime for portions of the site while critical subsystems remained operational. The impacted infrastructure included specific sections of the primary blender.org domain and associated blogs, which displayed "This page is not available" errors directing visitors to archived copies. Core services such as the Wiki, Developers portal, git repositories, and blender.chat communication platform were unaffected and continued functioning normally throughout the incident. The Blender Cloud service at cloud.blender.org, hosting training materials, also remained online as the attack was confined to the www subdomain.

Initial containment measures involved isolating affected web assets and verifying the integrity of downloadable software releases. The team confirmed all distributed files were uncompromised by validating MD5 and SHA256 checksums available through download.blender.org and mirrors, assuring users of installation safety. Maintenance extended for several hours as technicians addressed vulnerabilities exploited during the breach, prioritizing restoration of full website functionality. No data exfiltration or secondary compromises of developer tools or version control systems were reported. The incident caused temporary disruption to public access for documentation and blog content but preserved operational continuity for collaborative development and software distribution channels. Blender's transparent communication via social media provided real-time status updates while technical teams executed recovery protocols to resume normal operations.