Feeds

Hackers not responsible for New York Times website wipeout

Hours-long outage attributed to internal systems fault

Providing a secure and efficient Helpdesk

The website of The New York Times was unavailable for at least an hour on Wednesday morning, but the newspaper says the outage wasn't due to malicious attacks, as some had feared.

The NYT website first went dark around 11:30am Eastern Time and continued to display nothing but a terse "Service Unavailable" error for several hours.

When the outage first struck, staffers used the paper's Twitter account to let readers know that the problem was being addressed, but said only that the site was "experiencing technical difficulties" and that it would be back up shortly. The NYT email server was reportedly also affected.

The paper's edit staff posted details of breaking stories to the official Times Facebook feed during the downtime, an unusual move that was criticized by the anti-Zuck set.

What's more, the timing of the outage led some to speculate that it may have been the result of a deliberate attack. It coincided with several important events, most notably Egypt's bloody crackdown of protests by supporters of ousted president Mohamed Morsi.

The NYT has been the victim of hacking attacks in the past. In January it reported that its staffers' email accounts had been compromised by hackers linked to the Chinese military. On Wednesday, security research firm FireEye said the same group responsible for those attacks could be ready for more mischief.

Once the Times's website was restored late Wednesday afternoon, however, the paper's IT bods said that no outside forces were to blame for the morning's service interruption. In a message titled "To Our Customers," an anonymous staffer wrote:

As you may know, our Web site was unavailable for a period of time earlier today. The outage occurred within seconds of a scheduled maintenance update, which we believe was the cause. We are working on fully restoring service and apologize for any inconvenience.

Just which portions of the site's infrastructure still need repairs isn't clear. According to reports from around the web, the newspaper's full contents were available to readers in most regions by the time it posted the apology.

In all, it was a much shorter and less damaging outage than the Outlook and SkyDrive debacle that Microsoft suffered on Wednesday, which began in the early morning and which – as this Reg hack goes to press the big, red "Post" button – has yet to be resolved. ®

Choosing a cloud hosting partner with confidence

More from The Register

next story
SMASH the Bash bug! Apple and Red Hat scramble for patch batches
'Applying multiple security updates is extremely difficult'
Shellshock: 'Larger scale attack' on its way, warn securo-bods
Not just web servers under threat - though TENS of THOUSANDS have been hit
Apple's new iPhone 6 vulnerable to last year's TouchID fingerprint hack
But unsophisticated thieves need not attempt this trick
Hackers thrash Bash Shellshock bug: World races to cover hole
Update your gear now to avoid early attacks hitting the web
Oracle SHELLSHOCKER - data titan lists unpatchables
Database kingpin lists 32 products that can't be patched (yet) as GNU fixes second vuln
Who.is does the Harlem Shake
Blame it on LOLing XSS terroristas
Researchers tell black hats: 'YOU'RE SOOO PREDICTABLE'
Want to register that domain? We're way ahead of you.
Stunned by Shellshock Bash bug? Patch all you can – or be punished
UK data watchdog rolls up its sleeves, polishes truncheon
prev story

Whitepapers

A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.