9

MODERATOR NOTICE: This is an active incident. Do not respond unless you have additional information on it. Speculation is not permitted, nor is just saying "it's down right now".

Such posts or answers WILL be deleted without question.

I have tried to visit the official Ubuntu website, but it seems to fail with 503. Can anyone share any information they might know about this issue?

Improve this question
New contributor
nope is a new contributor to this site. Take care in asking for clarification, commenting, and answering. Check out our Code of Conduct.
1

2 Answers 2

Reset to default
12

There is a site for this.

Active Incident

Component "Ubuntu Security API - CVEs" and a few other components are Down

This incident has been open for 3 hours 56 mins 11 secs and was last updated 11 mins 11 secs ago. Incident Start Time: Apr 30, 2026 06:33:37 PM CEST

Affected Components

security.ubuntu.com 
jaas.ai
archive.ubuntu.com
canonical.com 
maas.io
blog.ubuntu.com
developer.ubuntu.com
Ubuntu Security API - CVEs
Ubuntu Security API - Notices
academy.canonical.com
ubuntu.com
portal.canonical.com
assets.ubuntu.com

Can anyone share any information they might know about this issue?

We are just users. Anyone that could probably is not a member of AU and hopefully dealing with whatever the issue is.

Improve this answer
4
  • This is an active attack incident - x.com/VECERTRadar/status/2049934376272810445 Commented 10 hours ago
  • See my answer here on this question as well. I've protected this question and am answering with what knowledge is publicly available right now. Commented 10 hours ago
  • Snapcraft webpage is not listed, but it is not loading either. Commented 9 hours ago
  • status.canonical.com : All sections are disabled. Commented 4 hours ago
2

This post is made with my Ask Ubuntu moderator hat on and my CISSP certified security professional hat on

According to the Canonical Services Status Tracker (https://status.canonical.com), acknowledgements were made about different infrastructure components being down starting around 12:30PM UTC-04:00 on 2026-04-30.

Throughout the day, the infrastructure has indeed been down. The exact cause is not officially identified by Canonical at the time of this post.

However, according to VECERT, at approximately 3:03PM UTC-04:00 on 2026-04-23 a DDoS attack was active against Ubuntu infrastructure. A screenshot of the post from X/Twitter is below:

VECERT notice of the attributed DDoS

Nobody at Canonical has replied about this even with me prodding with my Ubuntu Community Council hat on, so it's likely they are actively trying to address this issue.

As of 00:42 UTC-04:00 on 2026-05-01, much if not all of the infrastructure continues to be down, and we should consider this an "active incident" that will develop further in the next day or two.

Improve this answer
1
  • Should we really be naming the hackers, especially their .su website? Commented 2 hours ago

You must log in to answer this question.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.