Cyber attack on National Institute of Standards and Technology

Attack description :

Anonymous Sudan successfully targeted National Institute of Standards and Technology(https://www.nist.gov). Anonymous Sudan  also shared one POC of successful 1 hpur  DDOS attack. DoS and DDoS activities are specifically designed to interfere with the normal functioning of networks, services, or servers by inundating them with an excessive amount of internet traffic. Although these incidents can cause temporary disruptions and potentially result in financial losses, they can be effectively managed by implementing appropriate response measures.

The National Institute of Standards and Technology (NIST) is an agency of the United States Department of Commerce whose mission is to promote American innovation and industrial competitiveness. NIST’s activities are organized into physical science laboratory programs that include nanoscale science and technology, engineering, information technology, neutron research, material measurement, and physical measurement.

Mitigations :

1. Network Monitoring: Employing robust network monitoring tools allows organizations to identify abnormal traffic patterns and potential attacks in real time. This enables swift action and mitigation.
2. Traffic Filtering: Employing firewalls, intrusion detection systems (IDS), and intrusion prevention systems (IPS) can help filter out malicious traffic and reduce the impact of attacks.
3. Bandwidth Scaling: Collaborating with internet service providers (ISPs) to ensure sufficient bandwidth capacity helps absorb the impact of attacks and maintain service availability.
4. Load Balancing: Distributing network traffic across multiple servers can help alleviate the strain caused by attacks and improve overall system resilience.
5. Incident Response Planning: Developing an incident response plan that includes procedures to detect, respond, and recover from DoS or DDoS attacks is essential. This plan should involve key stakeholders and outline communication channels, mitigation strategies, and recovery processes.
6. Content Delivery Networks (CDNs): Utilizing CDNs can help distribute traffic geographically and reduce the impact of attacks by caching content closer to end-users.
7. Cloud-based DDoS Protection Services: Engaging the services of cloud-based DDoS protection providers can help mitigate large-scale attacks by absorbing and filtering malicious traffic before it reaches the organization’s network.

Impacts :

As per claimed by Anonymous Sudan,  National Institute of Standards and Technology(https://www.nist.gov) was down for 1 hour  leading to a period of downtime.

Take away: As Anonymous Sudan already claimed they would target any organization from USA cyber Space. DDOS attack on NIST National Institute of Standards and Technology(https://www.nist.gov) is a part of Cyber war against USA initiated by Anonymous Sudan.

Disclaimer : The information provided herein is on “as is” basis, without warranty of any kind.