CSTI
    industryThe Nation-State Era (2010-2016) Daily Briefing

    March 14, 2020: Cybersecurity Briefing Amidst Pandemic Challenges

    Saturday, March 14, 2020

    Lead Story: HHS DDoS Attack

    On March 14, 2020, the U.S. Department of Health and Human Services (HHS) faced a distributed denial-of-service (DDoS) attack. This attack was a direct consequence of the surge in online activities related to the COVID-19 pandemic. Although the DDoS attack aimed to overwhelm HHS systems, it ultimately did not cause significant disruptions as the systems remained operational throughout the incident. The increased reliance on digital infrastructures during the pandemic highlighted vulnerabilities in critical government services, raising concerns about the potential for more severe attacks in the future. This incident underscored the importance of robust cybersecurity measures as public health organizations became prime targets amid the crisis. source

    Secondary Item 1: SolarWinds Supply Chain Attack

    March 2020 also marked the onset of the SolarWinds supply chain attack, an advanced persistent threat that would later reveal its extensive impact on U.S. government and private sector networks. Attackers exploited vulnerabilities in SolarWinds’ Orion software, allowing them to maintain a long-term presence in compromised systems. This attack raised alarms over software supply chain security and the need for organizations to reassess their cybersecurity posture in light of sophisticated threat actor tactics. source

    Analyst Perspective

    The events of March 14, 2020, reflect a significant moment in the cybersecurity landscape, characterized by emerging threats that exploited the vulnerabilities associated with the COVID-19 pandemic. The DDoS attack on the HHS and the SolarWinds supply chain incident signal a shift towards targeting critical infrastructure and supply chains, emphasizing the need for heightened vigilance and proactive measures in cybersecurity strategies. As organizations continue to adapt to new challenges, the lessons learned from these incidents will be pivotal in shaping future defenses against evolving cyber threats.

    Sources

    HHS DDoS SolarWinds COVID-19 supply chain