Cyber Incident Victim: Czech Republic

On October 22, 2024, unidentified hackers launched distributed denial-of-service (DDoS) attacks against multiple Czech judicial and governmental institutions. The attacks targeted the Justice Ministry, courts, prison service infrastructure, and the Senate’s public websites, flooding them with excessive artificial traffic to disrupt services. Key judicial databases Infojednání and Infosoud, which provide public access to legal proceedings and court information, became inaccessible during the morning hours alongside individual court websites. The Senate’s website also experienced downtime but was restored by midday after its administration activated security protocols. By 3 PM local time, partial service restoration was underway for justice-sector systems, though officials confirmed the cyberattacks remained ongoing and cautioned about residual disruptions. The incident occurred against a backdrop of heightened cybersecurity warnings from the National Office for Cyber and Information Security (NÚKIB), which had previously identified DDoS campaigns as a frequent tactic in cyber operations linked to geopolitical tensions surrounding Russia’s invasion of Ukraine.

Czech authorities responded by implementing containment measures and coordinating with NÚKIB. Senate staff isolated affected systems and restored web access within hours, while the Justice Ministry’s spokesperson Vladimír Řepka publicly acknowledged the attack’s persistence and apologized for operational complications beyond their control. No data breaches or permanent system damage were reported, though the disruptions impeded public access to judicial information and legislative resources. The incident reflected a pattern of DDoS attacks against Czech infrastructure observed since 2022, though attribution to pro-Russian actors remained unconfirmed. Service recovery efforts continued throughout the afternoon with no further technical details disclosed about mitigation strategies or attack origins.