But even if it "just" impacts availability, a DDoS is still a cyber attack. 1/
Only elitist infosec gatekeepers try to argue what is and isn't a cyber attack based on the techniques used. Real professionals (aka "the people the business listens to") understand that impact is everything. 3/