Cyber Incident Victim: Central Bank of Tunisia
Date:
Mar 2022
Location:
Tunisia
Summary
A cyberattack targeting Tunisia's central bank was successfully contained through coordinated efforts between the institution and the national cybersecurity agency. Security systems detected the intrusion, which caused temporary disruptions to certain operations including the bank's public website. Officials confirmed all core banking data remained secure and uncompromised, emphasizing no integrity loss occurred within their information systems. The bank assured continuity of critical national and international financial services despite the incident, mitigating broader impacts on the banking sector. Normal operations were restored following the intervention.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 3 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On the morning of March 23, 2022, the Banque Centrale de Tunisie (BCT) detected a cyberattack through its information security systems. The incident triggered an immediate coordinated response between the bank’s internal teams and Tunisia’s Agence Nationale de la Sécurité Informatique (ANSI). By the following day (March 24), the BCT confirmed in an official statement that the attack had been successfully contained through these joint efforts. No data compromise occurred within the bank’s information systems, with all data verified as intact and operational integrity preserved. The rapid containment prevented escalation to critical banking infrastructure.
Despite successful mitigation, the attack caused temporary disruptions to select BCT operations, most notably affecting public access to its official website. The bank emphasized that core services linked to national and international banking systems remained fully functional throughout the incident. No evidence suggested broader financial system instability or data exfiltration. Public communications on March 24 prioritized reassurance regarding uninterrupted banking services and the integrity of financial data. Restoration efforts for impacted peripheral systems, including the website, proceeded without further elaboration on timelines or technical methods.