As with any public-facing website, there is always a small risk that your newsroom is on the receiving end of a DDoS attack. DDoS stands for Distributed Denial-of-Service and this kind of attack means that your website (or in our case, newsroom) gets flooded with so much fake traffic that the server is overloaded, and real visitors cannot access it anymore.
To mitigate this risk, we have the following controls in place:
- We are cloud-hosted and have implemented auto-scaling to increase processing capacity when (reasonably) required. This means that we can handle extra (legitimate) traffic in an automated way. If one of your press releases goes viral, we can handle it.
- We apply rate-limiting to incoming requests.
- We apply invalid request filtering and rejection in the perimeter components of our platform infrastructure. This means that we try to detect malicious request and try to filter these out on network level.
- We serve as many requests as possible from cache. This lightens the load on the server processing your requests and improves page speed.
- We facilitate customers using a CDN to offload processing from our platform. This also helps improve loading times.
- We have load-oriented alerting in place and manually block traffic in the rare cases that the previous measures don't suffice.
The above measures make sure that your newsroom is accessible for well-meaning visitors, while blocking malicious requests from bad actors.