Cyber Incident Victim: Post and Telecommunications Office
Date:
May 2024
Location:
New Caledonia
Summary
A cyberattack described as unprecedented in force targeted New Caledonia's internet infrastructure through a distributed denial-of-service (DDoS) attack aimed at saturating the network managed by the Post and Telecommunications Office. Authorities reported that most attacking IP addresses appeared linked to Russia, with the incident occurring shortly after the announcement of a high-profile political visit. The attack exploited structural vulnerabilities in the island's single-entry telecom infrastructure, causing disruptions to multiple organizations including banks, though specific targets remained unclear. While rapidly contained with assistance from national cybersecurity agencies, the incident echoed prior regional disruptions from similar attacks. No group claimed responsibility for the event.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On the night of May 21-22, 2024, New Caledonia experienced a significant cyberattack targeting its telecommunications infrastructure. Christophe Gygès, the local government member responsible for digital affairs, publicly denounced the incident as an attack of "unprecedented force" intended to saturate the archipelago's internet network. Network monitoring tools detected abnormal volumes of suspicious traffic during this period, coinciding with French President Emmanuel Macron's surprise visit announcement. Authorities reported that most attacking IP addresses appeared to originate from Russia, though no group claimed responsibility for the operation. The Paris prosecutor's cybercrime unit, which assumed control of the investigation from Nouméa prosecutors on May 22, confirmed the attack affected "several institutions in New Caledonia" without specifying victims. Government response teams including France's National Agency for Information Systems Security (ANSSI) intervened rapidly to contain the incident.
Conflicting reports emerged regarding the attack's scope and methodology. While Gygès characterized it as a distributed denial-of-service (DDoS) assault against an internet service provider's infrastructure, Nouméa Mayor Sonia Lagarde described simultaneous attacks targeting "a huge number of organizations" including financial institutions. Cybersecurity analysts noted New Caledonia's structural vulnerability due to its single network entry point managed by the Post and Telecommunications Office, a configuration common to island territories that facilitates network saturation attacks. Historical precedents include similar disruptions in French Polynesia (2018) and previous DDoS incidents in New Caledonia itself (2016). The attack caused measurable service disruptions, though the containment efforts prevented prolonged outages. Investigations remained ongoing as authorities worked to determine precise targets and attack vectors, with no additional claims or technical details confirmed at the time of reporting.