Earlier today FlexPool posted a message to Reddit about their pool node being under attack. I had planned to write up about the attack after they had everything sorted out and had a moment to answer some questions, but it appears a second pool is under attack as well – PoolChia.
Just a few minutes about PoolChia posted the following message to their discord channel.
FlexPool has confirmed on Reddit that they are running their Full node on AWS and that nothing in their stack connects directly to it publicly so they weren’t sure how someone could have picked them out explicitly and figured that all the pool nodes are in AWS are under attack.
The PoolChia announcement supports that assumption, and a conversation with PoolChia-Dusty has confirmed it. So it looks like FlexPool might not be targeted, but Chia Pools in general. I have confirmed that my node has not been targeted by an attack, but I will keep an eye on this issue.