General Discussion - Here is why I don't believe it's a DDOS attack. - Forum

" ZenJelly#0503 wrote: My car won't start, must be DDOS. Dryer isn't hot, DDOS. Cat is now barking, DDOS. With internet of things this will soon be true ;)	Posted by hasatt0#7256 on Jun 23, 2025, 7:34:14 PM Quote this Post
This has been going on since 2.0 more or less, HONESTLY, do you actually believe that the reason behind it is GGG willing to ruin their game and their reputation because they simply dont care? I would be surprised if it was something other than DDOS attacks, the amount of hate a certain group of people have been throwing at the game pretty much explains who is behind the problem.	Posted by LOLiv3r#0718 on Jun 24, 2025, 6:35:26 PM Quote this Post
It was never that bad. And why would the ddos attack not hit Ben and the likes when they are racing while being watched by several thousand people if it is a ddos conspiracy with the intention to ruin GGG's reputation?	Posted by Strickl3r#3809 on Jun 24, 2025, 6:51:00 PM Quote this Post
Feature, not bug? It wouldn't do for Deuce to be outshone by the old "zoom-zoom" game. ='[.]'= =^[.]^= basic (happy/amused) cheetahmoticon: Whiskers/eye/tear-streak/nose/tear-streak/eye/ whiskers =@[.]@= boggled / =>[.]<= annoyed or angry / ='[.]'= concerned / =0[.]o= confuzzled / =-[.]-= sad or sleepy / =[.]= dazzled / =^[.]~= wink / =~[.]^= naughty wink / =9[.]9= rolleyes #FourYearLie	Posted by Raycheetah#7060 on Jun 24, 2025, 9:18:01 PM Alpha Member Quote this Post
" Here is why I don't believe it's a DDOS attack. 1- PoE 1 exist for so long, settler league had no rollback server crash issue like this, previous leagues had no server issue like this. 2- This server issue did not existed on PoE 2 first launch. 3- This server issue started at PoE 2 Dawn of the Hunt launch and it was a thing for months. 4- During PoE 2 DotH league, we have never ever see any communication from GGG about the server issue. Forum and reddit was all about rollback server crash issue but absolutely no communication happened. 5- During CohhCarnage and his team interview with Jonathan stream which was aimed to be super casual interview and mostly targeted to developer's life and stuff, Cohh had to ask "whats happening to EU servers" because his chat was bringing up this question all the time. Jonathan casually replied with "Oh that's just ddos attack, that's all. We can't do anything about it and I don't have anymore to say" Afterwards Cohh said "he had to ask because chat is spamming" and he moved on to an another question. 6- I have never seen any developer team not communicate with playerbase during a serious DDOS attack. How he replied was so casual for a server issue that's been happening for months. 7- Now the same issue begun with PoE 1 newest league, suddenly they decided to communicate because this league promises a lot of players including new ones that is coming from first time PoE 2ers. Yet they give you the same excuse, DDOS attack. PoE 2 Dawn league had insane playerbase drop due to league being bad anyways, so they decided to ignore it and hope for servers to be better in the future leagues. Now that's happening again, they are working hard to fix it. 8- First of all, I have seen many game servers getting DDOSED before, yet none of them lasted months like this. Even some high-load platforms that rely on stable infrastructure, such as international payment systems like https://paykassma.com/ manage to stay stable under pressure — and they process real money 24/7. 9- If this is a DDOS attack targeted to EU and other servers were fine, why when majority of eu playerbase switches to NA, the NA servers which had no issue before suddenly crashes and rollbacks like EU servers? 10- People who say it's because of RMT; Why this issue never happened during Settler or previous nearby leagues or PoE 2 first launch at all? PoE 1 exist for years, and we all know RMT in this game exist for long time. PoE 2 being first launch ever, you don't need to know how rmt going to be crazy. Yet had no issue like this. I don't think someone targeting the servers because they want to prevent people to progress. 11- This is all the red flags I gathered, feel free to comment and discuss. I do not believe this is ddos attack. I believe it's just a normal server problem that something happened and now they can't fix it for months. Maybe they need new server providers but costs shit ton of money and they don't want to spend that money and rather make us deal with the broken servers. There is something happening in background for sure but DDOS ain't it. The whole “DDoS” explanation just doesn’t sit right with me either, especially given how casually it was dropped during that Cohh stream. Like, if this really was a prolonged, targeted attack on EU servers lasting months, why wouldn’t GGG be more transparent or proactive about it? Every other game I’ve seen under real DDoS pressure has either mitigated it fast or at least kept players regularly updated. What makes it even weirder is how these issues only started around the PoE 2 Dawn launch. Before that? Nothing even close. And suddenly it’s affecting both PoE 1 and 2 depending on player load and regions? That doesn’t sound like a textbook DDoS. Feels more like something’s broken behind the scenes — either the backend can’t handle the new infrastructure, or they’re cutting costs somewhere (like on server providers or mitigation services) and hoping to ride it out quietly. And yeah, their silence during DotH was deafening. It kind of undermines trust when they only start communicating again once there's a risk of losing new players. I'm not saying they’re lying outright, but “DDoS” is starting to feel more like a shield than an explanation.	Posted by Gulgowski#9422 on Jun 26, 2025, 8:38:18 AM Quote this Post
" LOLiv3r#0718 wrote: I would be surprised if it was something other than DDOS attacks, the amount of hate a certain group of people have been throwing at the game pretty much explains who is behind the problem. People who hate the game would just cease playing. You don't understand how much actual DDoS cost. I doubt someone will spend millions of dollars to sustain serious DDoS for months because he doesn't like the game. Maybe if they banned You-Know-Who like some non-smart people on reddit wanted. But he's playing and fine. Last edited by Hornsent#1110 on Jun 26, 2025, 8:58:44 AM	Posted by Hornsent#1110 on Jun 26, 2025, 8:57:00 AM Quote this Post
" Hornsent#1110 wrote: You don't understand how much actual DDoS cost. Neither do you.	Posted by Crîmnor#4334 on Jun 26, 2025, 8:59:49 AM Quote this Post
" Who knows how effective the Aamazon Shield protection would be if you could trigger some complex computation on the server. It could only be done from the game client, after the login. There is no way any server, more so game server, allows for "complex computations" without login. It's actually worse for web servers, since sites could be viewed by anyone without login and DDoS can target heavy pages. GGG use Cloduflare for that, though. Game servers should require login, no login means requests are rejected. And having to login means GGG could find those who cause trouble and ban them. Last edited by Hornsent#1110 on Jun 26, 2025, 9:05:48 AM	Posted by Hornsent#1110 on Jun 26, 2025, 9:02:41 AM Quote this Post
" Hornsent#1110 wrote: It could only be done from the game client, after the login. There is no way any server, more so game server, allows for "complex computations" without login. It's actually worse for web servers, since sites could be viewed by anyone without login and DDoS can target heavy pages. GGG use Cloduflare for that, though. Game servers should require login, no login means requests are rejected. And having to login means GGG could find those who cause trouble and ban them. You're completely wrong here. A DDoS attack doesn't require being logged in or even using the game client at all. Game servers don’t care if traffic is legit or not, they just receive massive floods of fake packets aimed directly at their IP, overwhelming bandwidth or server resources. This has nothing to do with complex computations or being authenticated. In fact, most DDoS attacks target the network layer or pre-login endpoints, and they're done through botnets or spoofed sources. Banning accounts does nothing when the attacker isn't even logged in to begin with. It's a network-level attack, not a game account issue. There’s really not much that can be done to prevent DDoS attacks entirely. At best, companies can mitigate the impact, but if stopping them was as easy as banning accounts or requiring logins, this wouldn't still be a problem for even the biggest studios today. Windows 11, 9950X3D, RTX 4090, 96GB DDR5, 14,100 MB/s SSD, 15,360x2160p @240Hz Ultra 4K Gaming & Workspace Powerhouse	Posted by VoidWhisperer42#5989 on Jun 26, 2025, 9:43:39 AM Quote this Post
" VoidWhisperer42#5989 wrote: A DDoS attack doesn't require being logged in or even using the game client at all. Game servers don’t care if traffic is legit or not, they just receive massive floods of fake packets aimed directly at their IP, overwhelming bandwidth or server resources. This kind of DDoS attack should be mitigated by services such as cloudflare. Also like some people noticed it's weird that the attack seems to just destroy current instances and then server works properly. If that was classic DDoS attack from a botnet, people wouldn't be able to play right after DC, they would be unable to connect for some minutes (since DDoS attack would not even allow packets to reach the server). Like the web server returns 502. It still feels for me as it's internal problem. Since right after crash the server often works perfectly. As if instances that caused load died. " It's a network-level attack, not a game account issue. You do realise that a network-level attack should't affect instances at all? Sure YOU lost connection to the server, but why is the map gone? If you enter the map, clear it and then physically disconnect your internet, you get booted, but you keep the loot. Last edited by Hornsent#1110 on Jun 26, 2025, 10:19:15 AM	Posted by Hornsent#1110 on Jun 26, 2025, 10:16:16 AM Quote this Post