09 October 2025
ICUK, which supplies wholesale connectivity and broadband solutions to internet service providers and businesses, is actively working to recover all its services following a sustained cyber-attack that has disrupted parts of its infrastructure.
The attack, which began on Monday afternoon, involved a large-scale Distributed Denial of Service (DDoS) assault targeting ICUK’s VoIP services and web infrastructure, including control panels, APIs, and websites.
According to local media, the initial attack on ICUK’s core network was swiftly mitigated thanks to their Cloudflare DDoS protection, ensuring that their broadband and leased line networks remained operational. However, the attackers shifted their focus to ICUK’s VoIP and web services, leading to periodic disruptions throughout the day. These services have been gradually coming back online as ICUK works to address the ongoing threats.
Leslie Costar, owner of ICUK, assured customers that communication has been transparent and ongoing throughout the incident. He expressed appreciation for customer patience and support during this challenging period. ICUK is also in the process of migrating some of its hosted services to Cloudflare’s protection, aiming to bolster defenses against future attacks.
This incident follows a recent high-profile cyber-attack on UK telecom giant COLT, which experienced a more severe breach. ICUK’s proactive response highlights the growing threat landscape faced by internet and telecom providers, emphasizing the importance of robust cybersecurity measures to safeguard essential services.
