Cyber Incident Victim: Progresívne Slovensko
Date:
Sep 2023
Location:
Slovakia
Summary
Progresívne Slovensko, a leading political party in Slovakia's parliamentary elections, experienced a significant DDoS attack targeting its website, rendering it inaccessible. The attack involved 78 million simultaneous requests, described as equivalent to 15 times Slovakia's population attempting to connect at once, overwhelming the server. Party chairman Michal Šimečka confirmed the disruption days before the elections, impacting public access to campaign materials, donation portals, and candidate information. While mitigation efforts were ongoing, the website remained non-functional the following morning. The incident followed a pattern of previous cyberattacks against Slovak entities, with historical links to pro-Kremlin actors, though no specific attribution was confirmed for this attack.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On September 23, 2023, shortly before Slovakia's parliamentary elections, the political party Progresívne Slovensko experienced a significant disruption to its online operations when its website became inaccessible due to a cyberattack. Party chairman Michal Šimečka publicly confirmed the incident via social media platform X (formerly Twitter), characterizing it as a distributed denial-of-service (DDoS) attack designed to overwhelm their servers with malicious traffic. The attack involved approximately 78 million simultaneous requests directed at the website, a volume Šimečka equated to 15 times the entire population of Slovakia attempting to access the site concurrently. This malicious traffic flood rendered critical campaign resources unavailable, including the party's political program documents, candidate lists, donation portals, and downloadable profile picture frames used by supporters. The timing proved particularly consequential as Progresívne Slovensko held a leading position in pre-election polls, with the parliamentary vote imminent. Initial technical assessments indicated the attack methodology aligned with DDoS patterns, though no threat actor claimed responsibility during the initial disclosure phase. External monitoring services corroborated the website's prolonged downtime, confirming ongoing accessibility issues for users attempting to visit the domain.
The cyberattack's immediate operational impact prevented public access to campaign materials during a critical pre-election period, disrupting voter outreach and digital engagement efforts. Šimečka acknowledged receiving user complaints about the outage while apologizing for the inconvenience through his social media statement. Progresívne Slovensko's technical teams initiated incident response measures focused on mitigating the DDoS traffic and restoring website functionality, though the platform remained non-operational as of the morning following the initial attack. Šimečka emphasized organizational resilience despite the disruption, stating the party would not be deterred by "lies, threats, or attacks." While historical context referenced previous pro-Kremlin hacker campaigns against Slovak targets, neither article provided attribution evidence for this specific incident. The sustained disruption highlighted vulnerabilities in political infrastructure during high-stakes electoral cycles, with cybersecurity measures failing to prevent service degradation despite active response efforts.