Cyber Incident Victim: Neues Leben e.V.

On night of Monday to Tuesday, June 16‑17 2025, Neues Leben e.V. suffered a professional cyberattack on its entire IT structure. Attackers gained external access through a refined deception, encrypted data, deleted parts irreversibly, and demanded a ransom. Despite existing security measures, the attack succeeded, affecting projects, media content, years of work, and also compromising parts of backup systems. The organization became aware of the incident when they observed the encryption and ransom demand.

The attack potentially exposed personal data including names, addresses, telephone numbers, email addresses, birth dates, bank connections, and information about booked leisure activities, donations, and loans. In coordination with the data protection officer and based on internal investigation results, the risk to affected individuals was assessed as not high. Operationally, the attack caused significant extra workload because much work had to be recreated and pending tasks redone, and the server required a complete reconfiguration, entailing a middle five‑digit expense.

Neues Leben e.V. contacted its data protection officer, initiated internal investigations, and engaged several external firms to restore server functionality and resume operations as quickly as possible. The organization set up a service telephone line (02681 87691‑10) for inquiries and asked for prayers for those affected and for data recovery. It also requested special donations to cover the financial burden, providing bank details (IBAN DE29573918000070083400, BIC GENODE51WW1) and a link to its donation page.