Cyber Incident Victim: Eir

On April 30, 2014, Ireland-based telecommunications provider Eircom detected unauthorized access to the perimeter of its email service infrastructure. The company responded by immediately shutting down its email system to contain the intrusion, disrupting service for its 350,000 eircom.net email users. Eircom publicly disclosed the incident through an alert on its community forum, confirming it had followed established security protocols and industry best practices to eliminate threats to user accounts. While the breach was isolated to the email service perimeter, the company proactively notified Ireland’s Office of the Data Protection Commissioner and other relevant regulatory bodies about the potential compromise. No evidence indicated that attackers had accessed other internal systems or exfiltrated customer data during the incident. As a precautionary measure, Eircom advised all email users to change their passwords immediately and maintain regular password updates going forward.

Approximately two hours after the initial service disruption, Eircom restored webmail access and confirmed that all undelivered emails caused by the shutdown had been successfully delivered to recipients. The company continued investigating the breach’s origin but did not publicly identify suspected threat actors or disclose technical details about the intrusion method. Eircom directed customers with questions to contact support through its Twitter account, online chat service, or telephone helpline (1901). Service restoration concluded the active response phase, with no further disruptions reported following the initial containment actions. The incident remained confined to email infrastructure, with no reported financial or data theft impacts beyond the temporary service outage.