Cyber Incident Victim: Hertener Löwen
Date:
Mar 2025
Location:
Germany
Summary
The Hertener Löwen reportedthat a Distributed Denial of Service attack on another server within their hosting provider's network segment made their ticket shop inaccessible. The attack was mitigated later that day, restoring access to the camp registration system, and subsequent log review showed no unauthorized data access. Their systems employ current software versions and require two‑factor authentication for sensitive data, and registration for the upcoming basketball camp is now open again.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
At approximately noon on 19 March 2025 the ticket‑shop server used by the Hertener Löwen for Oster‑Camp registrations became unreachable, preventing users from accessing the online booking system. The outage persisted throughout the afternoon, prompting the organization to investigate the cause of the disruption. Later that day the Hertener Löwen determined that the loss of service resulted from a distributed denial‑of‑service (DDoS) attack directed at a different server located within the same network segment of their data‑center provider. The attack did not target the Hertener Löwen’s own systems directly, but the resulting traffic overload interfered with the availability of the ticket‑shop server, making it impossible for visitors to reach the registration site. Upon identifying the DDoS incident, the Hertener Löwen reviewed their server logs to verify whether any unauthorized access to personal data had occurred during the outage. The log analysis showed no evidence of data breach or illicit data extraction, confirming that the attack affected only service availability and not the confidentiality of stored information. The organization noted that its systems were already protected by the latest software versions and that access to sensitive data required two‑factor authentication, which remained unchanged throughout the event.
In response to the ongoing attack, the data‑center operator implemented mitigation measures that successfully halted the DDoS traffic later in the afternoon of 19 March 2025. After the attack was stopped, the ticket‑shop server was restored to normal operation, allowing the Hertener Löwen to reopen the Oster‑Camp registration portal for individuals born between 2009 and 2019 who wished to sign up for the camp scheduled from 22 to 25 April 2025. The organization communicated that the camp would feature four days of basketball activities, competitions, a varied program, daily meals, fruit, and unlimited water at a cost of 105 euros, with the possibility of earning a place in an All‑Star Game against the first men’s team. Registration could be completed via the provided web link, and the Hertener Löwen confirmed that the service was again fully functional following the incident’s resolution.