Ubuntu Services and Snap Store Face Sustained Cyber Attack: What Users Need to Know

Overview of the Incident

On April 30, starting around 6 PM UK time, Canonical’s ecosystem of websites and services experienced a sustained, cross-border cyber attack. The outage has affected key platforms including the official Ubuntu website, the Snap Store, and the Launchpad development portal. Canonical publicly acknowledged the incident, stating they are actively working to mitigate the attack and will release further details soon.

Which Services Are Impacted?

Affected Platforms

The following Canonical services have been disrupted or taken offline:

• Ubuntu.com – the main website for the Ubuntu operating system.
• Snap Store – the platform for distributing and managing snap packages.
• Launchpad – the collaboration platform for open-source development.
• Other subsidiary web services hosted on Canonical’s infrastructure.

Services Still Operational

Despite the attack, many core functionalities remain available:

• APT repositories – Package updates and installations continue to work because the repositories are mirrored across multiple servers, countries, and data centers.
• ISO image downloads – Users can still obtain Ubuntu installation ISOs, as these are distributed via a separate content delivery network.
• Third-party mirrors – Many community and official mirrors remain online, so apt operations are unaffected for most users.

However, the primary archive.ubuntu.com server is currently unreachable at the time of this report.

What Caused the Outage?

Canonical has described the event as a “sustained, cross-border” attack, suggesting a distributed denial-of-service (DDoS) or similar malicious activity originating from multiple countries. The company’s security team is investigating and implementing countermeasures. No further technical specifics have been shared, but users are urged to monitor official channels for updates.

Immediate Impact on Users

For End Users

If you rely on Snap packages for daily use, you may encounter delays or failures when installing or updating snaps. Web-based access to the Snap Store is also down, though existing snap installations continue to function locally.

For Developers

Launchpad users (including those managing projects, bug reports, and package builds) cannot access the platform. This may temporarily stall development workflows that depend on Launchpad’s services.

For System Administrators

While apt update and apt upgrade should still work via mirrors, administrators relying on the main archive should consider switching to a local mirror or a third-party mirror until the attack is resolved. Additionally, the outage highlights the importance of diversifying service dependencies.

How to Stay Updated

Canonical’s official status page and social media accounts (e.g., @Ubuntu on Twitter) are being updated as the situation evolves. Users can also check the list of unaffected services above to plan their work accordingly.

Lessons and Best Practices

This incident serves as a reminder of the fragility of centralized online services. For Ubuntu enthusiasts and professionals, here are a few recommendations:

• Use multiple mirrors – Configure your sources.list to include fallback mirrors.
• Cache packages locally – Consider setting up a local apt-cacher-ng or similar proxy.
• Monitor security advisories – Stay informed about service statuses through official alerts.
• Back up critical data – Although not directly related, outages can sometimes expose secondary vulnerabilities.

Conclusion

The cross-border attack on Canonical’s infrastructure is a significant but manageable disruption. Core Ubuntu operations remain mostly intact thanks to distributed architectures. As Canonical works to restore full service, users should rely on alternative sources and keep an eye on official updates. This event also underscores the resilience of the open-source community’s mirrored ecosystems.