Cyber Incident Victim: Tunnel Gnalp-Steg

On the morning of Saturday, February 3, 2024, the traffic light control system in the Gnalp-Steg Tunnel experienced a complete failure. Initial assessments by the system's manufacturer attributed the outage to malicious software (malware) compromising the server controlling the traffic signals. The precise method by which the malware infiltrated the server remained under active investigation by relevant authorities at the time of reporting. The outage necessitated immediate manual traffic management by personnel from the Office of Civil Engineering and Geoinformation throughout Saturday and Sunday. This manual intervention successfully maintained traffic flow without reported accidents or major disruptions during the weekend period.

By Monday, February 5, 2024, authorities implemented a temporary construction traffic light system to regulate tunnel traffic while restoration efforts continued. This interim solution resulted in minor waiting times for motorists during certain periods. The Office of Civil Engineering and Geoinformation collaborated with the traffic light manufacturer to restore the primary control system, targeting reactivation before the following weekend. No additional technical details regarding the malware's characteristics, potential threat actors, or data compromise were disclosed in available reporting. The incident exclusively affected traffic control infrastructure within the Gnalp-Steg Tunnel, with no indication of broader system compromises or collateral impacts beyond transportation delays. Investigation into prevention measures for future incidents proceeded concurrently with restoration activities.