Back

Bluesky Faces Ongoing DDoS Attack Disrupting Services

Severity: Medium (Score: 51.9)

Sources: Voi.Id, Scworld, Techcrunch, Mezha, Heise.De

Published: 2026-04-16 · Updated: 2026-04-21

Keywords: bluesky, attack, users, suffers, ddos, report, slow

Summary

Bluesky, a social media platform, is currently experiencing significant service disruptions due to a sophisticated Distributed Denial-of-Service (DDoS) attack that began on April 15, 2026. The attack has led to intermittent outages affecting user feeds, notifications, and threads, with users reporting slow loading times and error messages. Bluesky's COO, Rose Wang, confirmed the nature of the attack, stating that the team worked through the night to mitigate its effects. As of April 17, there is no evidence of unauthorized access to user data. The attack has resulted in a spike in migration requests to alternative platforms, indicating user frustration. Bluesky's status page has also faced interruptions, complicating communication about the ongoing issues. The company plans to provide further updates by 1 p.m. ET on April 17. Key Points: • Bluesky is under a sophisticated DDoS attack, disrupting services since April 15. • Users are experiencing slow loading times and error messages across the platform. • Bluesky reports no evidence of unauthorized access to user data amid the attack.

Detailed Analysis

**Impact** The ongoing DDoS attack has caused intermittent outages and slowdowns affecting Bluesky’s website and mobile app since April 15, impacting user feeds, notifications, threads, and popular streams such as Discover and the official Bluesky Team feed. Users experience error messages like “Rate Limit Exceeded” and frequent timeouts, with some unable to access certain features or profiles. The disruption is limited to Bluesky’s infrastructure; other communities running on the same decentralized protocol remain operational. There is no evidence of unauthorized access or compromise of private user data. **Technical Details** The attack is a sophisticated Distributed Denial-of-Service (DDoS) campaign involving massive volumes of junk traffic generated by distributed botnets targeting Bluesky’s servers to overwhelm and degrade service availability. The attack began around 2:40 AM ET on April 15 and intensified throughout April 16. No specific malware, CVEs, or attacker infrastructure details were disclosed. The attack targets the availability stage of the kill chain by flooding servers with requests to cause service interruptions. **Recommended Response** Defenders should prioritize implementing and tuning DDoS mitigation controls such as traffic filtering, rate limiting, and scrubbing services to absorb and block malicious traffic. Monitoring network traffic for unusual spikes and deploying anomaly detection on application endpoints is advised. Since no specific vulnerabilities or malware were identified, focus should remain on maintaining service resilience and monitoring for any signs of lateral movement or data exfiltration attempts. Regular updates from Bluesky on mitigation progress should be tracked.

Source articles (18)

  • It’s not just you — Bluesky is (sorta) down — Techcrunch · 2026-04-16
    Bluesky’s website and app are still struggling on Thursday after experiencing service interruptions that COO Rose Wang attributed to a denial-of-service attack. According to the social network’s statu…
  • Bluesky suffers DDoS attack, users report slow loading and errors | Ukraine news - #Mezha — Mezha · 2026-04-16
    Frequent timeouts and ‘request limit exceeded’ messages disrupted Discover and official feeds, leaving many users unable to load popular streams. Engineers are investigating. As mentioned by Techcrunc…
  • Bluesky has been dealing with a DDoS attack for nearly a full day. — Theverge · 2026-04-17
    As a result, users have been experiencing “intermittent interruptions in service for their feeds, notifications, threads and ,” Bluesky says . The company first got a report of “intermittent app outag…
  • Bluesky blames DDoS attack for server outages — Engadget · 2026-04-17
    Bluesky is once again having a wobble. The platform said some of its systems are down and that it’s “investigating an incident with service in one of our reginos” (that’s Bluesky’s typo, not mine). Th…
  • Bluesky confirms DDoS attack is cause of continued app outages — Techcrunch · 2026-04-17
    Bluesky’s website and app are still struggling on Friday after experiencing service interruptions that chief operating officer Rose Wang attributed to an ongoing cyberattack. On Thursday evening, the…
  • DDoS attack disrupts Bluesky, users face feed and notification outages — Mezha · 2026-04-17
    A prolonged capacity attack has limited core features and frustrated users, while Bluesky’s engineers scramble to restore normal service and keep updates flowing. As reported by Techcrunch Bluesky is…
  • Bluesky under “sophisticated” DDoS attack — Cybernews · 2026-04-17
    Bluesky has been experiencing an intense Distributed Denial-of-Service (DDoS) attack that disrupted some of its services. The social media platform said in a security update that it first received a r…
  • Bluesky outage: Why it happened — Mashable · 2026-04-17
    Bluesky , the social media app popular with X expatriates, suffered a widespread outage on Thursday, April 16. And in a thread posted on the official Bluesky profile , the app's leaders revealed the c…
  • Bluesky breaks silence on outage and reveals cause - Tech — Sea.Mashable · 2026-04-17
    Bluesky , the social media app popular with X expatriates, suffered a widespread outage on Thursday, April 16. And in a thread posted on the official Bluesky profile , the app's leaders revealed the c…
  • Bluesky hit by cyberattack, causing widespread service disruptions | brief — Scworld · 2026-04-17
    As reported by TechCrunch, Bluesky, a decentralized social media platform, has been grappling with significant service interruptions on its website and app. These issues, which began on April 15, have…
  • Bluesky Admits to Having Experienced a Disruption Due to a DDoS Attack — Voi.Id · 2026-04-20
    JAKARTA - Bluesky revealed that its platform had experienced service disruption due to a Distributed Denial-of-Service (DDoS) attack that occurred on the evening of April 15, 2026 Pacific time. In its…
  • Mastodon says its flagship server was hit by a DDoS attack — Techcrunch · 2026-04-20
    Mastodon’s flagship server was hit by a distributed denial-of-service attack on Monday, the social networking software maker said, which rendered the instance unusable at times. Much of the site was i…
  • DDoS attack hit mastodon.social, users faced outages | Ukraine news - #Mezha — Mezha · 2026-04-20
    A major Mastodon instance experienced severe disruption early Monday, leaving many users unable to access the server globally. Developers began investigating at 7 AM ET and applied countermeasures, bu…
  • Mastodon says its flagship server was hit by a DDoS attack — News.Az · 2026-04-20
    Mastodon’s flagship server was hit by a distributed denial-of-service attack on Monday, the social networking software maker said, which rendered the instance unusable at times. Much of the site was i…
  • Bluesky, Fast-Growing X Alternative, Hit by Sophisticated DDoS Attack — Thecyberexpress · 2026-04-21
    A service disruption at Bluesky last week exposed the growing challenges faced by fast-expanding social media platforms, after the company confirmed that a “sophisticated” distributed denial-of-servic…
  • Bluesky hit by 24-hour DDoS attack as pro — Securityaffairs.Co · 2026-04-21
    Bluesky suffered a 24-hour DDoS attack that caused outages. A pro-Iran hacker group claimed responsibility for the disruption. Bluesky experienced a sophisticated DDoS attack that disrupted its servic…
  • Bluesky outage: DDoS attack allegedly by Iranian group "313 Team" — Heise.De · 2026-04-21
    The outage of the social network Bluesky last Thursday was apparently caused by a distributed denial-of-service attack (DDoS). The Iranian cyber gang "313 Team" claims responsibility for the attack. S…
  • 313 Team Iran Israel Shadow War — falconfeeds.io · 2026-04-21

Timeline

  • 2026-04-15 — Bluesky first reported intermittent app outages due to DDoS attack.
  • 2026-04-16 — DDoS attack intensified, affecting more users and services.
  • 2026-04-17 — Bluesky confirmed ongoing DDoS attack and plans to update users.

Related entities

  • DDoS (Attack Type)
  • Bluesky (Platform)
  • bsky.app (Domain)
  • status.bsky.app (Domain)
  • T1499 - Endpoint Denial of Service (Mitre Attack)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed