Cyber Incident Victim: Czech Statistical Office

On November 1, 2024, the Instagram account of the Christian Social Union (CSU) parliamentary group in the German Bundestag was compromised by unauthorized actors. Attackers posted pro-Palestinian content featuring the phrase "Free Palestine" on the party's official page. The breach was first reported by NDR's media magazine "ZAPP," with subsequent verification by a CSU parliamentary group spokesperson to the German Press Agency (dpa). Journalist Tilo Jung amplified awareness of the incident by sharing screenshots of the unauthorized posts on X (formerly Twitter), causing the content to circulate widely across social platforms. The CSU Landesgruppe stated it became aware of the intrusion promptly and deleted the compromised posts. Officials confirmed regaining full control of the account shortly after detection, emphasizing no prolonged access by threat actors.

The incident remained confined to the CSU Bundestag group's Instagram account, with no evidence of compromise to other party-affiliated social media pages or digital systems. While the attackers' identity and intrusion methodology weren't disclosed, the operation demonstrated targeted access to a political communication channel. Immediate consequences included reputational exposure through the dissemination of unauthorized geopolitical messaging inconsistent with party positions. The group's response focused on content removal and account re-securing without detailing additional forensic measures or third-party incident response engagements. No data exfiltration, secondary attacks, or persistent threats were reported following account restoration.