Cyber Incident Victim: Boards.ie
Date:
Jan 2016
Location:
Ireland
Summary
A popular Irish online forum experienced a multi-day outage due to a distributed denial-of-service attack, rendering its website and associated social media accounts intermittently inaccessible. The disruption coincided with unrelated service instability affecting a major social media platform, complicating communication efforts regarding the incident. Operational disruptions impacted user activity during the attack period, with the platform confirming the DDoS through its official but sporadically available Twitter channel. The incident generated broader community discussion across multiple online platforms during the service interruption.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On January 18, 2016, the Irish online forum Boards.ie experienced a distributed denial-of-service (DDoS) attack that rendered the website inaccessible. The outage persisted into a second day, significantly disrupting user access to the platform. Boards.ie's official Twitter account confirmed the incident, attributing the downtime to the malicious traffic flood. The attack coincided with unrelated service disruptions affecting Twitter throughout the same period, creating compounded visibility challenges as both platforms served as primary communication channels for status updates. Technical details regarding attack vectors, traffic volume, or specific infrastructure impacts were not disclosed in public statements.
The incident attracted community attention, generating discussion threads on platforms like Reddit where users shared outage experiences. No evidence suggested data compromise or secondary attacks beyond service unavailability. Boards.ie's Twitter communications remained intermittently accessible during the disruption, though the main website exhibited sporadic functionality at best throughout the two-day incident. Productivity impacts were informally noted in media coverage, though no quantitative metrics regarding user base or economic consequences were provided. The threat actor's identity and motivations remained unconfirmed by available sources, with no subsequent claims of responsibility documented in the immediate aftermath. Service restoration timelines were not explicitly detailed beyond confirmation of ongoing remediation efforts during the attack period.