BYOND
May 26, 2025
•[ ddos, extortion ]
BYOND endured a weeks-long DDoS that repeatedly knocked services offline; an extortion note said attacks would stop if BYOND went open-source.
Chorna Pista (chernapista.com)
May 25, 2025
•[ ddos, disruption of service ]
From May 25 to May 31, 2025, Bulgarian website chernapista.com and its European hosting infrastructure suffered a massive DDoS campaign lasting six days; access was fully disrupted until mitigation; no data theft or encryption reported; perpetrator identity unconfirmed.
SYZEFXIS
May 21, 2025
•[ ddos ]
Karfitsa reported a large DDoS targeting Greeces SYZEFXIS public administration network, causing temporary access issues before services were restored the same morning.
Federal Tax Service
May 20, 2025
•[ ddos, service disruption ]
Access to several major Russian state services was disrupted in a DDoS attack reported as originating from abroad; outage trackers showed issues across tax and digital key/document services.
SBIS corporate accounting service
May 20, 2025
•[ ddos, service disruption ]
BFM reported a mass foreign DDoS on SBIS on May 20 causing widespread service issues across websites and mobile apps before mitigation.
Platforma Obywatelska
May 16, 2025
•[ ddos ]
DDoS attack began around 09:00 local time against platforma.org; Polish officials said services were being restored with CERT NASK support.
Multiple internet services in the Russian Federation
May 15, 2025
•[ ddos ]
Roskomnadzor announced a mass DDoS against several internet services on May 15, 2025, but did not name specific victims or confirm achieved primary effects on a discrete organization; not coded as a cyberattack record per CED unit-of-analysis rules.
Swish
May 15, 2025
•[ ddos, service disruption ]
Swedens Swish payment service experienced a DDoS on the evening of May 15, causing widespread payment problems for under an hour before normal operations resumed; no intrusion or data compromise reported.
RTCG portal
May 12, 2025
•[ ddos ]
RTCG reported its news portal was hit by a series of DDoS attacks that made the site unavailable to users for a period during the evening. RTCG technical teams worked to repel the attacks so the portal could return online. The report characterized this as part of a broader pattern of attacks against the public broadcasters online services in recent years. No data theft was reported; the impact described was temporary loss of availability.
Arun District Council
May 6, 2025
•[ ddos, hacktivism ]
Pro-Russia group NoName057(16) ran a DDoS campaign against multiple UK local government sites; Arun DC confirmed website issues on May 6 that were resolved within hours; other councils reported little/no impact.
Government of Romania
May 5, 2025
•[ ddos, hacktivism, election interference ]
Russia-aligned hacktivists claimed DDoS attacks on Romanian state and candidate websites on election day, temporarily knocking portals offline before restoration.
Romanian state websites
May 4, 2025
•[ ddos, hacktivism, government ]
Russia-aligned hacktivist group NoName057(16) claimed DDoS attacks on Romanian state and candidate websites on election day; Romanias DNSC confirmed the incidents and said sites were restored.
Arriva Nederland
May 1, 2025
•[ ddos, hacktivism ]
Arrivas Dutch website was taken offline in a DDoS attack claimed by Russia-aligned hacktivists, with outages acknowledged locally; services were restored after mitigation.
Corendon
May 1, 2025
•[ ddos ]
Dutch outlet coverage attributed coordinated Russian DDoS attacks against Corendon and Arriva, framed as retaliation for Dutch support to Ukraine; disruptions were temporary.
Dutch public & private organizations
May 1, 2025
•[ ddos, hacktivism, service disruption ]
Russia-aligned hacktivists launched large-scale DDoS causing service disruptions at Dutch public/private orgs; NCSC acknowledged incidents; no internal compromise reported.
City Administration of Dresden
April 30, 2025
•[ ddos, government, outage ]
On April 30 2025, the City of Dresdens official websites became inaccessible due to a massive distributed denial-of-service (DDoS) attack. Officials blocked access to protect municipal IT systems, causing full disruption of online services such as parking ticket applications, petitions, and appointment scheduling. A similar outage occurred the previous weekend. No data theft, ransom demand, or perpetrator identification has been reported.
System Rejestrów Państwowych (Polish State Register System)
April 30, 2025
•[ ddos, hacktivism ]
On April 30, 2025, Polands System Rejestrw Pastwowych, which supports the national tax and registration systems, was targeted by a hacktivist DDoS campaign that caused temporary outages. Access to e-Declarations, CEPiK, and related government portals was disrupted for about one hour. No data theft or encryption occurred, and services were quickly restored.
NRC Media B.V. (publisher of NRC Handelsblad)
April 28, 2025
•[ DDoS, hacktivism ]
On April 28, 2025, the Dutch news organization NRC Media suffered a DDoS attack that rendered nrc.nl unreachable for nearly a full day; pro-Russian hacktivist group NoName057(16) claimed responsibility, linking the attack to Dutch support for Ukraine.
Multiple Gelderland Municipalities / NotuBiz Customers
April 28, 2025
•[ ddos, hacktivism, service disruption ]
On April 28 2025, a coordinated distributed denial-of-service (DDoS) attack claimed by the pro-Russian hacktivist group NoName057(16) targeted the Dutch municipal IT supplier NotuBiz, disrupting connectivity for at least 15 municipal and provincial websites in the province of Gelderland. The attack caused complete but temporary loss of access to public portals for several hours; no data theft or secondary compromise was reported.
Dictation.ru (Total Dictation Project)
April 25, 2025
•[ ddos ]
Dictation.ru, the website for the Russian-language educational project Total Dictation, was targeted by two DDoS attacks on April 25, 2025, reaching 38,000 requests per second. All attacks were mitigated by Solar, and no data theft or service outage occurred.
