If you think your business has experienced a DoS attack, we recommend that you act immediately by following our guidelines below, and then proceed to our ReportRecover and Reinforce sections for further assistance.

Some Immediate Action Steps to Take

  • The best way to resolve the threat is to contact your internet service provider (ISP) as soon as possible to see if they can block the sources or reroute the traffic.
  • Change the IP address (Internet Protocol address) used by the server (or network) or change the Domain Name System (DNS) name of the server and IP.
  • Depending on the severity, length of time, and nature of the DoS attack, you may want to report the crime to law enforcement.
  • If your ISP can’t help you to resolve the threat, you can try to use a network device that blocks DDoS attacks.


Click Here to Report Your Incident to the FBI IC3

Reporting cybercrime incidents to the FBI Internet Crime Complaint Center (IC3) via the link above is very important! The more national reporting data that is collected, the better the chance law enforcement has to catch the criminals and decrease online crime. Although the FBI does not resolve individual complaints directly, they will make your report available to local, state and other law enforcement partners. FAQs about IC3 reporting can be found here. Please read the FBI/IC3 privacy policy here. (If you believe that you’ve received a phishing email, please forward the email directly to


These resources have been gathered, selected and vetted to help simplify the process of recovering after a cybercrime incident has taken place. You may need to contact organizations outside Results will vary depending on your circumstances.


Once you have notified the appropriate organizations and you are on the road to recovery, it is time to reinforce your cybersecurity using these resources and tools.

Implement Preventative Measures

  • Contact an IT professional if you need help. Need help finding a vetted IT professional? Visit our Business Recovery Security Tools.
  • Visit the Cyber Readiness Institute to create a Cyber Incident Response Plan.
  • Regularly back up your business’s data, system software, and applications and make sure you can restore from your backups.
  • Train staff to recognize DDoS attacks and react quickly. Early detection is important.
  • Buy a dedicated server for your business’s website to ensure more bandwidth and security.
  • Update your business’s website regularly to keep the content management system, plugins, and other tools secure.
  • Create blacklists to ban suspicious IP addresses.
  • Establish a relationship with your network and internet service providers and know what assistance they may be able to provide you in the event of an attack.
  • Learn how to understand and address cybersecurity risks with the CISA Cyber Essentials Toolkits.

Community Resources