A major nationwide communications provider (Bandwidth.com) is under a targeted Denial of Service attack that is affecting some part of calling for most customers nationwide. Unfortunately, there is nothing we can do to mitigate this attack as it is not hitting us directly. We must rely on their teams to remediate the issue. For direct updates you can subscribe to updates at https://status.oitvoip.com where we will post the most frequent updates. Due to the scale of the incident we will not be accepting support cases. All updates will come from the above status page.
Who is affected?
In addition to being one of our primary carriers, Bandwidth is the backbone for most major communications companies from Microsoft Teams to Google Voice and smaller carriers like us in between. Upwards of 40% of the US’s service providers rely on Bandwidth.com for their voice and other services. This means that even if your own phone number is not housed with Bandwidth, it is likely that the person calling you is doing so from a Bandwidth number. We have seen several failed calls from Verizon and T-mobile related to this incident.
How long will it last?
The exact nature and identity of the attacker is not known; nor are their motives. Bandwidth is currently doing everything in their power to mitigate the DDoS attack as well as working with authorities. They are also posting their own updates at https://status.bandwidth.com
What are we doing?
We are investigating the feasibility of moving our Bandwidth numbers to alternate carriers. All new port request and phone number orders are already being completed on alternate carriers. As noted above, moving your numbers may not be sufficient to ensure service. It is only half of the equation. And there is no guarantee that the attackers will not move from Bandwidth to another provider as they have already done in recent months. In the meantime, we will continue to post frequent updates to https://status.oitvoip.com and on our partner Discord
What can you do?
While incredibly frustrating, it is also likely that your customers and business associates are affected by the same attacks. That means they could be more understanding to requests for using alternate means of communications. We recommend using your social media, email and website to leverage alternative methods of communications. This may be email, tweets, website chat, Microsoft Teams, Slack and other forms. You may also submit a request for a phone number from an alternate ULC. However, this will now affect Bandwidth customers trying to call you.
We understand the importance of having working phones and appreciate your cooperation during this difficult time.
Ray Orsini, CEO and the OIT family
Bandwidth.com is latest victim of DDoS attacks against VoIP providers (bleepingcomputer.com)
DDoS assaults against VoIP providers continue | TechRadar
ZDNET Bandwidth CEO Confirms outages caused by DDoS attack
Bandwidth.com Became the Victim of DDoS Attacks | IT Security News