Cyber Incident Victim: New Zealand Ministry for Primary Industries
Date:
Sep 2021
Location:
New Zealand
Summary
A denial-of-service attack disrupted online services for multiple government agencies and banks, including the New Zealand Ministry for Primary Industries, causing accessibility issues for users. The incident affected entities such as NZ Post and MetService alongside financial institutions, with recovery efforts underway while authorities continued assessing the full impact. Cybersecurity agency Cert NZ confirmed the disruptions, though no conclusive findings regarding the attack's scope or resolution timeline were disclosed at the time.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On September 8, 2021, multiple New Zealand government agencies and financial institutions experienced disruptions to their online services due to a denial-of-service attack. The Ministry for Primary Industries (MPI), alongside ANZ, Kiwibank, NZ Post, and MetService, confirmed service accessibility issues affecting public users. The coordinated nature of the incident became apparent as customers across these organizations reported simultaneous difficulties accessing web-based platforms. Digital Economy Minister David Clark acknowledged the cyber attack on Wednesday afternoon, confirming Cert NZ—the national computer emergency response team—was actively assessing the situation. Initial reports indicated the attack overwhelmed targeted systems with traffic, though specific technical details about attack vectors or perpetrator origins remained undisclosed by authorities during the initial response phase. Service degradation persisted for an unspecified duration, with ANZ and Kiwibank confirming active recovery efforts by the time of media reporting.
Cert NZ coordinated impact assessments across affected entities while Minister Clark emphasized caution in characterizing the incident’s full scope, stating efforts to ascertain consequences were ongoing. No organization disclosed data breaches or compromised internal systems, focusing public statements exclusively on service availability disruptions. The Ministry for Primary Industries did not detail operational impacts on primary sector stakeholders but confirmed its digital platforms were among those impaired. By Wednesday evening, some financial institutions reported progress restoring customer access, though government agencies including MPI had not yet issued recovery timelines. The incident marked a notable multi-sector disruption, though official communications refrained from attributing motives or identifying threat actors pending further investigation. Cert NZ maintained its advisory role without publicizing mitigation steps taken by individual organizations during the immediate response period.