Cyber Incident Victim: Ministry of Justice (UK)
Date:
Feb 2014
Location:
United Kingdom
Summary
The UK Ministry of Justice experienced a distributed denial-of-service (DDoS) attack that disrupted access to its website, causing temporary downtime before services were restored approximately three hours later. Hacktivists claimed responsibility, citing the government department's failure to condemn NSA surveillance activities as motivation. The incident drew criticism from users who emphasized the importance of maintaining public access to legal information. Concurrently, another DDoS attack targeted the website of the GCHQ, indicating a broader coordinated disruption effort against UK government entities.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On February 12, 2014, the United Kingdom’s Ministry of Justice experienced a distributed denial-of-service (DDoS) attack that disrupted access to its official website, justice.gov.uk. The Ministry publicly acknowledged the incident through its Twitter account, stating the site was down and efforts were underway to restore services. Approximately three hours after the initial disruption, the Ministry confirmed via Twitter that the website had been restored to normal operation, apologizing for inconvenience caused by the downtime. The attack rendered the website inaccessible to the public during the outage period, temporarily blocking access to legal information and online services. At the time of the article’s publication on February 13, the website appeared fully operational with no lingering disruptions reported. Technical details regarding the scale of the attack, specific vectors used, or internal detection methods were not disclosed in available sources.
Hacktivist actors claimed responsibility for the DDoS attack, explicitly citing the Ministry of Justice’s failure to condemn National Security Agency (NSA) surveillance activities as their motivation. The incident drew public criticism from some users who argued that disrupting access to legal resources disproportionately harmed citizens rather than advancing political objectives. This attack occurred concurrently with another DDoS incident targeting the website of GCHQ, the UK’s signals intelligence agency, though no collaborative link between the two attacks was confirmed. The Ministry’s public communications were limited to status updates via Twitter, with no official statements elaborating on operational impacts, forensic findings, or attribution beyond the hackers’ claims. Restoration efforts focused on bringing the primary website back online without detailed public explanation of mitigation measures implemented. No secondary breaches, data compromises, or follow-up incidents were reported in connection with this event.