Cyber Incident Victim: Câmara Municipal de Loures

On September 22, 2022, the Municipal Council of Loures, a municipality in the Lisbon district of Portugal, experienced a targeted cyberattack characterized by local authorities as "malicious and deliberate." The attack specifically aimed to disrupt the municipality's information systems and services, though the exact technical nature of the intrusion was not publicly disclosed. The council's internal security systems detected the attack, triggering an immediate operational response to contain and mitigate the incident's effects. Municipal leadership, under Mayor Ricardo Leão of the Socialist Party (PS), formally reported the incident to Portugal's Judicial Police (Polícia Judiciária) and the National Cybersecurity Center (Centro Nacional de Segurança), initiating law enforcement and national security coordination. No initial details were provided regarding the specific municipal services impacted, the duration of system compromise, or whether citizen or municipal data was accessed or exfiltrated during the breach.

The municipality prioritized containment measures to prevent further system degradation while working to restore normal operations. Officials publicly stated that service restoration was expected to occur "very soon," though no definitive timeline or technical recovery milestones were shared. The incident response did not involve public disclosures about attacker identity, motives, or demanded ransoms, nor did authorities confirm whether the attack involved ransomware, data theft, or purely disruptive objectives. Operational continuity efforts focused on IT system remediation, with no reported interruptions to essential civic services beyond the unspecified IT disruptions. The lack of detailed public statements about compromised infrastructure or data exposure risks left the full operational and reputational impacts unquantified in the immediate aftermath.