Cyber Incident Victim: Bycyklen

On May 3-5, 2018, Copenhagen's Bycyklen electric bicycle-sharing system suffered a cyberattack that disrupted operations across the city. Unknown hackers with detailed knowledge of the system compromised the company's operational infrastructure, erasing databases and forcing a complete service outage lasting most of Saturday. The attack impacted 1,860 GPS-equipped bicycles, leaving only 200 functional units available during peak hours. Riders were unable to access bicycles through the iOS and Android apps that controlled the GPS routing and booking system. Bycyklen confirmed the malicious activity caused total system failure, with only a brief temporary restoration mid-Saturday before services collapsed again. No bicycles could be unlocked or managed through the platform during the outage period.

Bycyklen's technical team manually updated each bicycle to restore functionality following the database deletion. Forensic analysis revealed no evidence of data exfiltration, with the company confirming user payment details were not stored and asserting email addresses, phone numbers, and encrypted PINs remained secure through salted password hashing. Despite the encryption measures, Bycyklen proactively advised all users to change their PINs as a precaution. Copenhagen police initiated an investigation into the attack, which exclusively targeted business operations rather than customer data. Service recovery progressed throughout the week, with system status indicators showing near-full availability by May 8 when public reports confirmed operational restoration. The incident highlighted critical infrastructure vulnerabilities in urban mobility systems without compromising user information.