Cyber Incident Victim: NZ SeaRise
Date:
May 2022
Location:
New Zealand
Summary
A cyber attack targeted the NZ SeaRise website shortly after its launch, overwhelming it with approximately 10,000 hits per second from suspected overseas IP addresses, rendering the platform inaccessible. Project co-leaders attributed the disruption to potential anti-climate change actors or automated bots, though no definitive attribution was confirmed. The incident impeded access to critical location-specific sea-level rise projections, frustrating local government officials seeking to address climate adaptation and residents researching impacts on their properties. The website provided updated coastal flood risk data incorporating vertical land movement, essential for infrastructure planning and emissions policy discussions. Service disruption occurred during a period of heightened public and governmental interest in the projections, which indicated accelerated timelines for coastal flooding thresholds in populated regions due to land subsidence. The attack highlighted vulnerabilities in disseminating climate science amid contested public discourse.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 6 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On May 2, 2022, the NZ SeaRise website (www.searise.nz/maps), which had launched at 5:00 AM that day, experienced a cyber attack that rendered it inaccessible. Project co-leader Professor Tim Naish reported the site was receiving approximately 10,000 hits per second from overseas IP addresses, overwhelming its capacity. He characterized the traffic as likely originating from an "autobot" (automated bot) and speculated—without confirmation—that the perpetrators could be "anti-climate change people or the Russians." The attack disrupted access to the platform’s location-specific sea level rise projections, which integrated climate-driven sea level data with vertical land movement measurements across 7,434 New Zealand coastal sites. This interruption occurred during a critical window when local government officials, including mayors, and residents sought to review projections to inform adaptation planning.
The incident impeded public and governmental engagement with the research, which forecasted accelerated sea level rise timelines due to land subsidence in regions like Wellington and Auckland. Dunedin and Invercargill councils confirmed the data aligned with prior projections but emphasized its utility for refining flood protection strategies in vulnerable areas like South Dunedin, the Clutha Delta, and the Taieri Plain. Technical teams worked to restore site functionality, though no specific mitigation measures or attribution details were disclosed. Climate Change Minister James Shaw acknowledged the research’s "sobering" implications amid preparations to release New Zealand’s emissions reduction plan. The attack highlighted operational vulnerabilities during high-profile data launches, delaying stakeholder access to time-sensitive climate adaptation resources without altering underlying scientific findings.