Blog Post

A DDoS Attack Hit HSBC, Taking Them Down for Hours

HSBC suffered hours of downtime in 2016 due to a DDoS attack. Learn what happened and how being prepapred could help prevent events like this.

HSBC reported a Distributed Denial of Service (DDoS) attack last Friday that resulted in an outage lasting several hours. Despite being isolated to the UK HSBC website (, the downtime left a lot of customers without any access to the banking site.

To add salt to the company’s already painful wound, the outage couldn’t have come at a worse time—the final Friday of the month is typically a payday for UK businesses, not to mention the end of January is also a critical time for tax returns.

The incident was reported Friday morning, however our charts displayed indicators that are typical of a DDoS attack as early as Thursday evening.

Webpage response times began to spike around 10:30 p.m. GT, with test failures beginning around 7:00 a.m. GT Friday. These failures included connection failures and test timeouts caused by increased latency while sending data.

HSBC performance chart

When you dig deeper into the data and other metrics available, you will see that it shows the servers were having issues delivering the bigger assets on the page, like jpg, png and js files, prior to the outage. This is evident by looking into the metrics that show the latency with sending the data from the servers, more specifically wait (time to first byte) and load (from first byte to last byte) times.

HSBC performance chart

Since the DDoS attack was impacting the web server’s ability to send data efficiently, they eventually failed to establish connections with the end users at all as the servers became overloaded. This led to frustration on both sides, as the outage lasted intermittently for several hours.

While it’s impossible to prevent all outages from happening, using a monitoring tool that delivers the ability to catch problems sooner can decrease your risk of failures and DDoS attacks. As a digital performance analytics platform, our customers are able to receive timing alerts on of any of the metrics discussed above, empowering them to preempt the attack before a failure occurs.

The customer experience should be the top priority for every digital business. Though it hasn’t been confirmed when exactly HSBC became aware of this issue, it’s clear that arming your business with the proper tools can mean the difference between experiencing a minor dip in performance and suffering a complete interruption of your users’ access to your site.

News & Trends
Synthetic Monitoring
Workforce Experience
Financial Services

You might also like

Blog post

DEJ Market Study Names Catchpoint a Leading Vendor

Blog post

Incident Review – The Third AWS Outage in December: When it Rains, it Pours

Blog post

The Future of Operations: AI-powered Internet Performance Monitoring

Blog post

Catchpoint’s 2024 SRE Survey Is Here – We Need YOU!