Cyber Incident Victim: Comune di Dronero

On 28 February 2025 the official website of the Comune di Dronero was subjected to a cyber attack that rendered the site inaccessible for several hours. The attack occurred in the late morning and persisted until early evening, during which time users could not reach the municipal online services. Technical staff from the municipality began an immediate investigation to determine the nature and scope of the incident. Access to the website was restored to the public on 1 March 2025 after the technicians completed their verification checks.

The administration confirmed that, at the time of the statement, there was no evidence that data stored on the website had been exfiltrated or was being used for purposes other than those for which the information was originally collected. Nevertheless, the municipality warned that the compromised data could potentially be leveraged in phishing attempts, fraudulent emails, telephone scams or other illicit activities. Citizens were advised to scrutinise any unexpected communications that referenced personal information obtained from the municipal site. The warning emphasized the need to remain vigilant against social engineering tactics that might exploit the incident.

In response to the attack, the municipal offices and the designated Data Protection Officer were made available for inquiries and assistance concerning the incident. The Data Protection Officer can be contacted via the email address [email protected]. The municipality reiterated its commitment to monitor the situation and to inform the public of any further developments regarding the security of its online services. No additional technical details about the attack vector or the perpetrators were disclosed in the available sources.