How a volunteer-run wildfire site in Portugal stayed online during DDoS attacks

Cloudflare reports that fogos.pt, a volunteer-run Portuguese wildfire information service protected under Project Galileo, was targeted by two brief DDoS attacks on July 31 and August 1, 2025 (peaks of ~33k and ~31k RPS, max bandwidths 1.7 Gbps and 849 Mbps). The attacks appear to have used open proxies (July 31) and cloud-based machines/botnets (August 1) and were automatically detected and mitigated by Cloudflare with no service downtime; the case study emphasizes the importance of DDoS protection for public-interest sites during high-traffic wildfire events.