Cybersecurity Briefing: March 19, 2020 - Ransomware and DDoS Attacks Surge

Lead Story: Finastra Ransomware Attack

On March 19, 2020, Finastra, a leading financial services software provider, fell victim to a significant ransomware attack that caused major service interruptions across its platforms. The attack exploited unpatched servers, raising serious concerns about the company’s cybersecurity practices. Although Finastra reassured clients that no customer data was exfiltrated, the incident underscores the critical need for robust vulnerability management in the ever-evolving threat landscape. This attack reflects a broader trend of increasing ransomware incidents amid the COVID-19 pandemic, where organizations are more vulnerable due to rapid transitions to remote work.

Secondary Item 1: DDoS Attack on U.S. HHS

Days before the Finastra attack, the U.S. Department of Health and Human Services (HHS) experienced a massive Distributed Denial of Service (DDoS) attack on March 15. The attack aimed to overwhelm HHS's servers, coinciding with the urgent public health response to the COVID-19 pandemic. While the HHS had defenses in place that prevented serious operational disruptions, this incident highlighted vulnerabilities in critical infrastructure during a time of heightened public health risk, raising alarms about the targeting of essential services.

Secondary Item 2: Federal Government Data Breach

In March 2020, reports emerged of a significant data breach affecting multiple U.S. government agencies, attributed to a supply chain compromise involving SolarWinds products. This advanced persistent threat (APT) attack facilitated unauthorized access to numerous governmental and private sector networks, highlighting the ongoing risks associated with third-party software vulnerabilities. This breach marks one of the most noteworthy cybersecurity incidents of the year, emphasizing the need for heightened vigilance and security practices within government networks.

Secondary Item 3: Surge in Cyberattack Statistics

March 2020 also marked a dramatic increase in global cyberattacks, with reports indicating a 51% rise in breaches compared to the previous year. The COVID-19 pandemic has created a perfect storm for cybercriminals, as organizations rapidly transitioned to remote work environments, exposing critical data and systems to new threats. This alarming trend underscores the urgent need for organizations to bolster their cybersecurity measures and prepare for an evolving threat landscape.

Analyst Perspective

The events of March 19, 2020, illustrate a critical juncture in cybersecurity, characterized by heightened vulnerabilities amid the global health crisis. The Finastra ransomware incident, coupled with the DDoS attack on HHS and the broader governmental breach, reflects a systematic increase in cyber threats targeting essential services and critical infrastructure. As organizations continue to adapt to remote work, the necessity for comprehensive cybersecurity strategies has never been more apparent. Stakeholders must prioritize vulnerability management, incident response, and employee training to navigate this challenging landscape effectively.