Sudden unexpected increase in network out

I see what you're referring to in the IPv6 graph, and your inclusion of the screenshot is greatly appreciated! It appears that a service may have been initiated, triggering external communication over IPv6. This graphical pattern is commonly associated with the initialization of services such as web servers, game servers, FTP transfers, or private network relay services.

However, if this activity wasn't prompted intentionally, it's advisable to follow our "Recovering from a System Compromise" guide, as the graph could potentially indicate an outbound network attack originating from your system. Linode's infrastructure monitoring is designed to notify you via Support Ticket if any activity reaches a threshold where it breaches the Terms of Service.

• Recovering from a System Compromise

Considering the relatively low throughput, my inclination is toward the possibility of a latent internal service starting. Otherwise, worst case, a minor compromise. Rest assured, running through your Linode's internal performance monitors and logs should better demonstrate where the network traffic is originating from. I also recommend changing your passwords and conducting a thorough system malware scan, just in case. I hope that helps!

• How to Scan Your System for Vulnerabilities with ClamAV

Doesn't seem like a system compromise, rather a DDos attack. I noticed that the bandwidth consumption of one of my sites shot up drastically. I setup cloudflare on it and enabled bot protection and challenges and then the requests subsided.

I heard this happened to a friend of mine as well using Linode. I think you need better DDos protection.

It happened to me also but now the problem is solved.