Skip to main content

Originally published January 22, 2014 at 9:00 PM | Page modified January 23, 2014 at 1:52 PM

  • Share:
  • Comments (9)
  • Print

Massive outage hits China’s Internet, directs traffic to Wyoming

Technology experts say China’s own system of internet controls likely mistakenly redirected the country’s traffic to several sites normally blocked inside China, some connected to a company based, on paper at least, in a Cheyenne, Wyo., building.

The New York Times

Most Popular Comments
Hide / Show comments
Kind of overkill for a Denial of Service attack. MORE
unkanny, the title says "Massive outage hits China’s Internet, directs... MORE
l8t3rman > PS - its not a DoS attack. May not have been meant as a DoS attack... MORE


SAN FRANCISCO — The story behind what may have been the biggest Internet failure involves, among other characters, a little-known company in a drab building in Wyoming and the world’s most elite army of Internet censors a continent away in China.

On Tuesday, China’s 500 million Internet users were unable to load websites for eight hours. Nearly every Chinese Internet user and Internet company, including major companies such as Baidu and, was affected.

The reason? Technology experts say China’s own Great Firewall — a vast collection of censors and snooping technology used to control Internet traffic in and out of China — was likely to blame, mistakenly redirecting the country’s traffic to several sites normally blocked inside China, some connected to a company based in the Wyoming building.

Chinese authorities put a premium on control. The censors police access to the Internet to smother any hint of anti-government sentiment, jail dissidents and journalists, blacklist major websites such as Facebook and Twitter, and block access to media outlets such as The New York Times and Bloomberg News.

Tuesday’s downtime shows that sometimes, the efforts can backfire.

The China Internet Network Information Center, a state-run agency that deals with Internet affairs, said it had traced the problem to the country’s domain-name system. One of China’s biggest anti-virus software vendors, Qihoo 360 Technology, said the problems had affected about three-quarters of the country’s domain-name system servers.

The domain-name servers, which act like an Internet switchboard, routed traffic from some of China’s most popular sites to an Internet address that, according to records, is registered to Sophidea, a company based, at least on paper, in that Wyoming building, in Cheyenne.

“I have never seen a bigger outage,” said Heiko Specht, an Internet analyst at Compuware, a technology company based in Detroit. “Half of the world’s Internet users trying to access the Internet couldn’t.”

With half the world’s Internet traffic flooding Sophidea’s Internet address, Specht said he believed it would have taken less than a millisecond for the company’s servers to crash.

Until last year, Sophidea was based in a 1,700-square-foot house on a residential block of Cheyenne. The house, along with its former tenant, a business called Wyoming Corporate Services, was the subject of a Reuters article in 2011 that found that about 2,000 business entities had been registered to the home. Among them were the owner of a company charged with helping online-poker operators evade online-gambling bans.

Wyoming Corporate Services, which helps clients anywhere in the world create companies on paper and is designated to receive lawsuits on their behalf, moved its headquarters 10 blocks from its former base last year. Gerald Pitts, the Wyoming Corporate Services president, said in an interview Wednesday that his company acted as the registered agent for 8,000 businesses, including Sophidea, although he did not know what the company did.

Technology experts say Sophidea appears to be a service that reroutes Internet traffic from one website to another to mask a person’s whereabouts, to make it easier to send spam, for example — or to evade a firewall, like the ones that Chinese censors erect.

It is not clear where Sophidea is physically based.

By late Tuesday, some technologists surmised the disruption might have been caused by Chinese Internet censors who had tried to block traffic to Sophidea’s websites because they could be used to evade the Great Firewall and mistakenly redirected traffic to the Internet address.

News where, when and how you want it

Email Icon



Celebrate that amazing NFC win with a poster or tee shirt featuring The Seattle Times Jan. 19 front page. Order now!


Partner Video


The Seattle Times

The door is closed, but it's not locked.

Take a minute to subscribe and continue to enjoy The Seattle Times for as little as 99 cents a week.

Subscription options ►

Already a subscriber?

We've got good news for you. Unlimited content access is included with most subscriptions.

Subscriber login ►