Cyber Incident Victim: Vlaamse Dienst voor Arbeidsbemiddeling en Beroepsopleiding

On June 11, 2024, the Flemish Employment and Vocational Training Service (VDAB) experienced a cyberattack that disrupted its online services for several hours. The attack began on Tuesday, with hackers overwhelming VDAB’s systems through sustained assault methods, causing significant operational interruptions. The agency’s website and external applications became inaccessible due to the traffic surge, while internal systems also faced parallel disruptions. VDAB confirmed the incident publicly on Wednesday, clarifying that the attack constituted an external attempt to compromise service availability rather than a data breach. No evidence indicated unauthorized access to or theft of personal information belonging to users or employees. The disruption temporarily hindered job seekers and employers from accessing VDAB’s digital platforms during the attack window.

VDAB’s IT personnel initiated countermeasures immediately upon detecting the anomalous activity, collaborating with telecommunications provider Telenet to mitigate the attack’s impact. By Tuesday evening, the agency restored full functionality to its website and all internal and external applications, confirming operational normalization. The response involved traffic filtering and infrastructure adjustments to withstand the attack vectors, though specific technical details of the mitigation were not disclosed. This incident marked the most severe cybersecurity event affecting VDAB since 2019, when the organization last faced comparable disruption. Service continuity was maintained for offline operations and physical locations throughout the incident, with no residual effects reported after system restoration. The agency did not identify the attackers or disclose whether law enforcement investigations were underway.