What caused Bluesky’s near-day DDoS?

Bluesky has reported service interruptions after a denial-of-service (DDoS) attack, with outages lasting nearly a full day. The platform said some of its systems were down and that it was investigating an incident impacting service in one of its regions.

What happened

The core issue was a DDoS attack targeting Bluesky’s infrastructure. As a result, users experienced failures and degraded availability, prompting the company to publicly acknowledge an ongoing investigation and to describe the affected scope in terms of its “regions.”

Why it matters

DDoS attacks against social and communication platforms are particularly impactful because they can quickly disrupt:

• User access to posts and feeds
• API calls used by apps and integrations
• Real-time reliability for moderation and security systems

A prolonged outage—nearly a full day—also highlights the operational challenge for smaller or newer platforms that may not have the same breadth of traffic-absorption capacity as the largest incumbents.

What we don’t know

No specific attacker or mitigation details were provided in the available reporting. It also wasn’t clear from the public information exactly which defenses were used, or how quickly traffic was successfully filtered.

Overall, the incident reinforces a familiar lesson for the industry: as social platforms become more central to communication and content discovery, they remain persistent targets for disruptive network attacks, and even short-lived DDoS campaigns can quickly become high-visibility availability events.