Read on Twitter
Interesting article by @HerbLinCyber reflecting on SolarWinds. https://twitter.com/lawfareblog/status/1341382680752087041
Lots to agree with in this article. But have to take issue with this. Is SolarWinds bad? Sure. Is it the "worst cyberattack to date"? No.
NotPetya cost $10bn, of which FedEx $300m and Maersk $400m individually. It knocked out the radiation monitoring at Chernobyl, the Ukrainian National Bank, targeted the grid, power stations, airports, and disrupted the global supply chain on everything from cars to chocolate
WannaCry bricked 200,000 computers in 150 countries. It affected multiple hospitals in the UK, caused cancelled surgeries, bricked MRI scanners, and turned off blood storage refrigerators, as caused car production at Nissan and Renault to grind to a halt.
It's not even the most significant espionage of the decade. The OPM hack caused recall of undercover overseas CIA operatives; and a separate espionage op against CIA caused a catastrophic loss of CIA operations in China
Or, hell, Snowden publishing a ton of NSA's internal docs; or Wikileaks dumping State Dept cables that led to a US Ambassador being PNGed and led to SecState going on a global apology tour
So, yes, by all means, SolarWinds hack is very consequential. But let's not lose perspective.
