Cyber Incident Victim: Ignitis Group

On July 9, 2022, Lithuanian energy company Ignitis Group experienced significant distributed denial-of-service (DDoS) attacks targeting its digital services and websites. The company described this as its largest cyber-attack in ten years, though it confirmed no system breaches occurred. Pro-Russian hacking group Killnet publicly claimed responsibility for the attacks via its Telegram channel on the same day, linking the incident to Lithuania’s support for Ukraine amid the ongoing conflict with Russia. Ignitis Group disclosed the ongoing attacks and their operational disruptions through a Facebook post on July 9, stating it had managed to limit the impact on its systems. The attacks persisted beyond the initial disclosure, requiring continuous mitigation efforts. The company emphasized its focus on maintaining critical customer-facing systems despite the sustained assault.

The incident occurred amid a broader wave of cyber-attacks against Lithuanian entities following the country’s enforcement of EU sanctions restricting goods transit to Kaliningrad, a Russian exclave, which began in late June 2022. Lithuania’s Vice Minister of National Defense, Margiris Abukevicius, characterized the attacks as primarily aimed at generating publicity and escalating regional tensions, cautioning against excessive public discussion that might incentivize further attacks. Ignitis Group, a major energy provider across the Baltic states and Finland serving approximately 1.6 million customers, collaborated with authorities to restore website and digital service accessibility. Edvinas Kerza, the company’s head of business resilience, prioritized minimizing customer disruptions during the attack and outlined plans to evaluate and strengthen systems against future large-scale incidents. The DDoS attacks disrupted public-facing digital services but did not compromise internal systems or halt energy distribution operations.