First thing I did was go to the twitter channel. I did not see anything so I opened a ticket.
I think it is better to announce it there.
It's only affecting a very extremely tiny subset of clients - so I didn't want to get everybody concerned about it unless the attack gets to the point that we can't manage it or have to take drastic steps.
To be completely straightforward - these attacks aren't big enough to take anything we have offline - but our facility is proactively trying to protect us. I've asked that they stop doing this [stop null-routing IPs] which will result in things staying online.
If the attack does get to the point that our infrastructure can't handle it - we do have other options available to us other than de-routing IPs and we'll use those first.
It's been a LONG time since we've had any DDoS attacks much less of this magnitude and our infrastructure has changed substantially since the last time so our facility is doing their best to protect us and is being a bit ... too overprotective .