The internet company states that it is in no position to remediate the situation, as the throttling is outside its control, and there are no effective workarounds or mitigations to address the access problems it causes.
"As the throttling is being applied by local ISPs, the action is outside of Cloudflare’s control, and we are unable, at this time, to restore reliable, high-performance access to Cloudflare products and protected websites for Russian users in a lawful manner," stated Cloudflare.
Russia’s throttling of Cloudflare makes sites inaccessible
Starting June 9, 2025, Russian internet service providers (ISPs) began throttling access to websites and services protected by Cloudflare, making sites inaccessible from the country.
- The throttling is so aggressive, reportedly only allowing users to download the first 16 KB of any web asset, that it effectively breaks most Cloudflare-backed sites for Russian netizens.
Cloudflare maintains that it has not received formal communication about this from the Russian state but considers this action part of the country’s broader strategy to oust Western tech firms from the domestic market.
According to reports, the same type of throttling affects other Western internet service providers, including Hetzner (Germany), DigitalOcean (US), and OVH (France).
- "One primary goal is to combat the tools used to circumvent state censorship. Hetzner and DigitalOcean are widely used by Russians to host private VPN servers, which allow them to bypass the Kremlin's ever-widening blocklists," reported MediaZona earlier this month.
- "Cloudflare's infrastructure is similarly used by established anti-censorship services like Psiphon. By degrading these core providers, the state can disrupt the ecosystem of circumvention tools without having to block each one individually."
Source: Cloudflare
From a technical perspective, Cloudflare believes that Russian ISPs, including Rostelecom, Megafon, Vimpelcom, MTS, and MGTS, employ multiple throttling and blocking mechanisms against them, including packet injection and packet blocking, which cause timeouts.
The throttling works even when connection requests reach servers located outside of Russia and affects all connection methods and protocols, including HTTP/1.1 and HTTP/2 on TCP and TLS, as well as HTTP/3 on QUIC.
Source: Cloudflare
Being unable to restore access, Cloudflare urges site operators in Russia to lobby local entities to lift restrictions.
- While many of these actions were previously justified as measures to protect against drone attacks near the Ukrainian border, the number of regions impacted by internet access restrictions has recently grown rapidly, according to Roskomsvoboda, now including locations far from the front line.
The graph below uses Radar’s Data Explorer to focus on just the Post-PSH stage, where there is a dip followed by an immediate and proportionally large increase before June 11. This pattern corresponds closely with the loss data seen above:
Scattered Spider hackers shift focus to aviation, transportation firms
Hackers associated with Scattered Spider tactics have expanded their targeting to the aviation and transportation industries after previously attacking insurance and retail sectors
- June 27, 2025
- 02:20 PM
0
Retail giant Ahold Delhaize says data breach affects 2.2 million people
Ahold Delhaize, one of the world's largest food retail chains, is notifying over 2.2 million individuals that their personal, financial, and health information was stolen in a November ransomware attack that impacted its U.S. systems.
- June 27, 2025
- 05:12 AM
- 0
Windows 11 KB5060829 update released with 38 new changes, fixes
Microsoft has released the KB5060829 preview cumulative update for Windows 11 24H2, which includes 38 changes, including improvements to the taskbar and a new PC-to-PC migration experience.
- June 27, 2025
- 03:28 AM
- 0
Whole Foods supplier UNFI restores core systems after cyberattack
American grocery wholesale giant United Natural Foods (UNFI) reports that it has restored its core systems and brought online the electronic ordering and invoicing systems affected by a cyberattack.
- June 27, 2025
- 02:21 AM
- 0
Hawaiian Airlines discloses cyberattack, flights not affected
Hawaiian Airlines, the tenth-largest commercial airline in the United States, is investigating a cyberattack that has disrupted access to some of its systems.
- June 27, 2025
- 01:37 AM
- 0
FTC approves $126 million in Fortnite refunds over ‘dark patterns’
The Federal Trade Commission (FTC) has approved $126,000,000 in refunds to be sent to 969,173 Fortnite players as part of a settlement over allegations that Epic Games tricked users into making unwanted purchases.
- June 26, 2025
- 04:27 PM
- 1
No comments:
Post a Comment