Cyber Incident Victim: Cork City Council
Date:
May 2018
Location:
Ireland
Summary
A cybersecurity breach compromised personal data of thousands using a parking application managed by Cork City Council, exposing names, addresses, phone numbers, and vehicle registration details. Initially attributed to international actors, authorities later identified a local suspect, who was interrogated with electronic devices seized during the investigation. The council confirmed no financial information was accessed, while data protection regulators acknowledged the incident originated months prior. Law enforcement inquiries remain active regarding the unauthorized access and motive.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
In May 2018, Cork City Council experienced a data breach affecting users of its parking application, compromising the personal information of approximately 5,000 individuals. The illegally accessed data included names, addresses, telephone numbers, and vehicle registration details, though financial information remained unaffected according to council statements. Initial suspicions pointed toward international data thieves as potential perpetrators. The breach remained under investigation for several months until October 2018, when Irish law enforcement made significant progress. The Garda Computer Crime Unit shifted focus to a local suspect after conducting forensic examinations, though investigators had not yet established a clear motive for the attack.
Authorities executed search operations resulting in the seizure of multiple digital devices, including mobile phones, hard drives, and laptops belonging to the individual under scrutiny. GardaĆ formally questioned the suspect while continuing technical analysis of the confiscated equipment. The Data Protection Commissioner received notification of the incident and confirmed the initial breach occurred in May, though the timeline of subsequent investigative actions remained unspecified. Cork City Council maintained public assurances regarding the security of financial data throughout the incident while cooperating with law enforcement. Garda authorities emphasized the ongoing nature of their investigation into the data compromise as of October 2018, without disclosing specific technical details regarding the attack methodology or system vulnerabilities exploited.