Multiple Gelderland Municipalities / NotuBiz Customers
April 28, 2025
•[ ddos, hacktivism, service disruption ]
On April 28 2025, a coordinated distributed denial-of-service (DDoS) attack claimed by the pro-Russian hacktivist group NoName057(16) targeted the Dutch municipal IT supplier NotuBiz, disrupting connectivity for at least 15 municipal and provincial websites in the province of Gelderland. The attack caused complete but temporary loss of access to public portals for several hours; no data theft or secondary compromise was reported.
Aigües de Mataró
April 21, 2025
•[ ransomware, encryption, service disruption ]
Ransomware encrypted Aiges de Matars corporate servers on April 21 2025, taking the website offline and delaying customer services. The utility reported no evidence of data exfiltration; water service and quality remained unaffected. No actor has claimed responsibility.
Pierce County Library System
April 15, 2025
•[ ransomware, data leak, service disruption ]
The Record reported that the Pierce County Library System discovered a cybersecurity incident on April 21, 2025 that forced it to shut down all systems, with an investigation later finding attackers had access between April 15 and April 21. By May 12, the library confirmed hackers breached systems and stole information on both patrons and current/former employees, and later breach notifications indicated more than 340,000 people were impacted. The report stated the INC ransomware gang claimed the attack in May, and the combination of service shutdown and confirmed data theft supports a mixed event involving disruption and data compromise.
Western New Mexico University
April 13, 2025
•[ cyberattack, service disruption ]
Cyberattack beginning April 13 disrupted WNMUs website and other systems; campus Wi-Fi remained down and desktops required IT clearance; temporary website and workarounds used during finals period.
Finnish election information portal (vaalit.fi)
April 8, 2025
•[ ddos, hacktivism, service disruption ]
Pro-Russian hacktivist group NoName057(16) carried out a DDoS attack against Finlands official election information site vaalit.fi on April 8 2025, temporarily preventing public access.
Tempo Media Group
April 6, 2025
•[ ddos, service disruption ]
From April 6 to 10, 2025, Tempo Media Groups news portals (Tempo.co, Tempo English) suffered a large-scale Distributed Denial of Service (DDoS) attack that rendered the sites inaccessible for several days. The disruption followed Tempos investigative reporting on online gambling networks. No data theft or system compromise was reported, and the perpetrators remain unidentified.
Igra-Service
April 5, 2025
•[ DDoS, hacktivism, service disruption ]
Between April 5 and 8, 2025, the IT Army of Ukraine claimed responsibility for a DDoS operation against Russian internet provider Igra-Service in Krasnoyarsk Krai. According to reports, traffic reached up to 55 Gbit/s, disrupting internet and television access for several days and causing some collateral outages to Rostelecom networks. The action was described by participants as a protest campaign.
Blizzard Entertainment
April 3, 2025
•[ ddos, service disruption ]
Blizzards Battle.net platform experienced a distributed denial-of-service (DDoS) attack on April 3 2025, causing login latency and disconnections across multiple games. Blizzard confirmed and mitigated the disruption within roughly four hours. No data theft, encryption, or ransom attempt was reported.
Rbk Money
March 30, 2025
•[ cyber incident, service disruption ]
Russian source reported cyber incident impacting payments firm operations and services.
X (Formerly Twitter)
March 10, 2025
•[ DDoS, service disruption, hacktivism ]
Social media platform X (formerly Twitter) suffered a massive cyberattack involving a large-scale DDoS assault that caused worldwide outages and service disruptions. The company activated additional defenses through Cloudflare to mitigate the impact. The hacktivist group Dark Storm claimed responsibility for the attack, while Elon Musk suggested possible involvement of state-sponsored actors after attack traffic was traced to IPs originating from Ukraine a claim the group denied. The disruption temporarily affected user access and platform functionality, marking one of the largest attacks against X since its rebranding.
Beeline
March 3, 2025
•[ ddos, service disruption ]
Targeted DDoS disrupted Beeline internet services across parts of Russia.
Polish Space Agency (Polsa)
March 2, 2025
•[ cyberattack, network intrusion, service disruption ]
The Polish Space Agency (POLSA) went offline after detecting a cyberattack that forced it to disconnect its internal network from the internet to contain the incident. National cybersecurity teams, including CSIRT NASK and CSIRT MON, were engaged to assist in investigating and restoring operations. While POLSA did not disclose specific details, internal sources suggested that email systems were compromised. As a member of the European Space Agency, POLSA temporarily suspended several digital services while ensuring containment, system recovery, and investigation into potential espionage or disruption motives behind the attack.
Fort Bend County Libraries
February 24, 2025
•[ service disruption ]
Fort Bend County is recovering from a Feb. 24 cyber incident that disrupted library catalogue and e-library services for weeks and led to significant cybersecurity contracting; officials reported no leakage of personal information.
Transport Authority
February 17, 2025
•[ ddos, hacktivism, service disruption ]
On February 17, 2025, hacktivist group NoName05716 launched a DDoS attack on Italys Transport Authority, causing temporary service slowdowns. The attack was part of a broader campaign targeting Italian institutions in retaliation for political statements by President Sergio Mattarella.
Bohemia Interactive
February 6, 2025
•[ DDoS, service disruption ]
Bohemia Interactives DayZ and Arma servers experienced a distributed denial of service attack beginning 2025-02-06, disrupting connectivity for players. Some claims attributed the incident to the group Xiangjang_zhi, though no official confirmation exists.
Karnataka Kaveri 2.0 Portal (Registration services)
January 29, 2025
•[ ddos, service disruption ]
The Kaveri 2.0 property registration portal in Karnataka was hit by an AI-amplified distributed denial-of-service (DDoS) attack beginning on January 29 2025. In one wave about 620,000 malicious requests were recorded within two hours, with overall traffic rising to ~20 lakh requests over the attack period. The portal suffered partial statewide outages lasting roughly a week before full restoration on February 5. The attack was traced to an IP address outside the state, and no data theft or internal compromise was reported.
Electronic School (ÓØá "ÃÂûõúтрþýýðѠшúþûð"), Novosibirsk
January 15, 2025
•[ DDoS attack, service disruption, cyber attack ]
On January 15, 2025, a powerful DDoS attack targeted Novosibirsks Electronic School digital diary platform. The attack, described as one of the most massive in the region, caused several hours of disruption before service was restored.
University Of Valladolid
January 1, 2025
•[ cyberattack, service disruption ]
Spanish university continued recovery efforts after January cyberattack impacting services.
CDEK
May 23, 2024
•[ cyberattack, service disruption, ransomware ]
Head Mare, a little-known group, claims responsibility for an attack that has disrupted service for days at CDEK, one of Russias largest delivery companies.
