Cyber Incident Victim: Germany

On the weekend of April 2025, a Russian hacking group launched a coordinated cyber attack against several German municipal websites, including the online presence of Dresden. The attackers aimed to disrupt the city’s internet services, such as e‑parking permits and online appointment scheduling, by targeting the dresden.de domain. During the assault, the Dresden website experienced restricted accessibility, with users reporting intermittent availability. The city’s administration confirmed that the attack occurred between 10:00 and 14:00 on Friday, causing a noticeable delay in response times for some applications while the core pages and services remained reachable.

According to a statement from Dresden’s town hall, the attack was successfully repelled by the city’s IT security teams, and normal operation was restored by the following Monday. Throughout the incident, the affected services continued to function, albeit with slowed performance during the specified window. The same Russian hacking group had previously been identified by federal cybersecurity authorities as responsible for a breach of dresden.de in October 2023. In addition to Dresden, the municipal websites of Berlin and Nuremberg were also impacted during the same wave of attacks.

Authorities have not disclosed further technical details about the methods used or the extent of data exposure, if any, in the public statements released. The city’s administration emphasized that, after the defensive measures were taken, all online services have been operating without problems since Monday. No additional disruptions have been reported in the aftermath of the incident.