Cyber Incident Victim: Czech Republic

On October 22, 2024, multiple Czech judicial and governmental institutions experienced coordinated cyberattacks disrupting online services. The attacks began in the morning, targeting the Prison Service, courts, Ministry of Justice websites, and the judicial databases Infojednání and Infosoud. Attackers employed Distributed Denial of Service (DDoS) techniques, flooding systems with excessive traffic to overwhelm infrastructure. The Senate of the Czech Parliament's website also became inaccessible due to the same attack campaign. Ministry of Justice spokesperson Vladimír Řepka confirmed ongoing restoration efforts by 3:00 PM local time, noting services were gradually returning but warning that the cyberattack continued to cause potential disruptions unrelated to their recovery actions.

Senate spokesperson Lada Faldynová reported their security team activated protective measures immediately after detecting the attack, successfully restoring Senate website functionality by midday. The Senate coordinated response efforts with the National Office for Cyber and Information Security (NÚKIB). While no group claimed responsibility, NÚKIB had previously warned that DDoS attacks against Czech targets had increased since Russia's invasion of Ukraine in February 2022, though direct attribution to pro-Russian actors remained unconfirmed. The incident caused significant operational interruptions across judicial platforms, forcing public apologies for service disruptions. Systems remained partially unstable hours after initial detection, with recovery timelines uncertain due to persistent malicious traffic.