Cyber Incident Victim: ODAV AG

On January 5, 2024, a malware attack targeted the data center of ODAV AG, a Straubing-based IT services provider supporting German trade chambers nationwide. The intrusion disrupted operations for multiple Handwerkskammern (trade chambers) across Bavaria and Germany, though ODAV did not publicly confirm the cyberattack until January 11. Upon detecting the compromise, ODAV immediately activated an internal crisis team and implemented precautionary security measures. These actions included disconnecting all affected systems from the internet and severing network connections to customers and partners to contain the incident. The company’s decisive isolation of infrastructure caused widespread service outages, rendering trade chamber websites inaccessible and limiting access to online services.

The operational disruption persisted for several days, with numerous trade chambers acknowledging a "security incident" by January 8 without initially specifying its nature. ODAV’s January 11 statement confirmed the cyberattack’s impact on its infrastructure and consequently on dependent chamber services, though restoration timelines remained unspecified. The company engaged external cybersecurity experts to conduct forensic analysis while coordinating with relevant authorities. ODAV declined to disclose whether data exfiltration occurred or elaborate on the malware’s characteristics. Service restoration efforts prioritized security reviews before reconnecting systems, prolonging downtime for trade chambers reliant on ODAV’s platforms. The incident underscored systemic vulnerabilities in centralized service providers for critical business associations, with nationwide operational consequences unresolved at the time of reporting.