I don't want to make any jumps to conclusions, but the fact of the matter is that a DDoS attack or DoS attack against a Tor hidden service is entirely possible. That said I have not been exceptionally impressed with the apparent security skill of SR, but on the other hand CUSTOMERS ARE RESPONSIBLE FOR THEIR OWN SECURITY. So it really shouldn't matter too much. Relying on a server / site operator to keep you secure is fucking retarded. Security is your own responsibility. On the other hand, maybe a misconfiguration or other issue has needlessly made the site vulnerable to DoS attacks. I have no idea. But it is incorrect to say that bandwidth DDoS , or anything like that, is impossible to do against a hidden service. Some very specific forms of DDoS are impossible to do over Tor, but some forms of DDoS are possible to do against hidden services that are not possible against clearnet sites.