Cyber Incident Victim: Chantilly
Date:
Feb 2023
Location:
France
Summary
The town of Chantilly experienced a cyberattack that resulted in the complete removal of its municipal website, disrupting residents' access to online services. Following an alert from the national cybersecurity agency, local authorities partially restored services through a new provider while conducting system examinations and antivirus updates across all municipal computers. Initial assessments suggested no data leakage occurred. The incident was linked to a parallel attack against Lille's servers the same day, part of a broader increase in cyber intrusions targeting French public entities including regional administrations in Normandy, Guadeloupe, Caen, Seine-Maritime, and Seine-et-Marne. A police report was filed to investigate the attack's origins.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 3 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On February 28, 2023, the municipal website of Chantilly, France, became inaccessible following a cyberattack that resulted in its complete disappearance from online platforms. The attack severed residents' access to the town’s digital services, disrupting routine municipal operations. Chantilly Mayor Isabelle Wojtowiez confirmed the incident originated from unidentified hackers and stated the National Cybersecurity Agency of France (ANSSI) alerted the town to the breach on the day of the attack. Authorities initiated a legal response with a formal complaint filed at the Chantilly gendarmerie to facilitate investigations into identifying the perpetrators. Technical recovery efforts commenced immediately, including the creation of an interim webpage hosted by a new internet service provider to partially restore critical citizen-facing services. Municipal staff conducted internal reviews of all town hall computer systems to assess the attack’s scope and potential lingering vulnerabilities, though preliminary analysis suggested no immediate evidence of data exfiltration or compromise of sensitive information. Additional security measures included comprehensive antivirus updates across all governmental devices. The attack coincided with a separate incident targeting Lille’s municipal servers on the same date, prompting officials to acknowledge a broader pattern of cyber threats against French public infrastructure.
Municipal technicians prioritized system integrity verification alongside service restoration, reinforcing cybersecurity protocols to prevent recurrent breaches. The mayor emphasized operational stabilization by redirecting digital traffic to the provisional platform, though full functionality of the original website remained unresolved. Concurrently, authorities noted an escalation in cyberattacks targeting French regional governments and public institutions throughout early 2023. This trend included confirmed breaches in Normandy, Guadeloupe, Seine-Maritime, Seine-et-Marne, and Caen, collectively illustrating heightened risks to civic digital infrastructure. Chantilly’s incident underscored the operational paralysis resulting from such disruptions, as manual processes temporarily replaced automated systems for essential resident services. Investigation outcomes regarding the attack’s origin or potential attribution to known threat groups remained undisclosed as forensic examinations continued. The town maintained public assurances regarding data security while acknowledging the persistent threat environment facing local governments across France.