Cyber Incident Victim: JDC Logistik
Date:
Apr 2025
Location:
Germany
Summary
JDC Logistik reported a cyber attack after detecting unusual activity in its systems and confirming a targeted intrusion. The organization took immediate steps to halt the attack and limit damage, while its IT security teams work around the clock to investigate and restore normal operations. Deliveries and pickups continue as scheduled, with all vehicles on the road, and telephone support remains available through regular landline numbers and designated mobile lines for specific departments. Email communication and weight recording systems are currently offline, but the company states that emails are not lost and expects email service to resume soon, advising customers to submit orders by phone in the meantime. The firm asks customers to check its website for updates on organizational measures.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 0 motives | 2 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On the late afternoon of April 23, 2025, JDC Dahmen detected unusual activity in its IT systems. Following an investigation, the company confirmed that the activity constituted a targeted cyber‑attack. Immediate measures were taken to halt the attack and limit any damage. The IT security teams began working around the clock to investigate the incident and restore system security.
Despite the attack, the company reported that deliveries and pickups continued as planned and all vehicles remained in operation. Customers could still reach the company via its known land‑line telephone numbers. In case parts of the system were taken offline, mobile contact numbers were provided for the Sammelgut‑Nachverkehr, Vertrieb, Lagerlogistik and Allgemeine Fragen departments. Email traffic had not yet been restored, although the company assured that incoming emails were not lost and expected to resume email availability around midday. The Weberfassung system also remained unavailable, prompting the request that current orders be submitted by telephone.
JDC Dahmen advised customers to regularly visit the company’s news page for updates on organisational measures related to the incident. The notice was dated Solingen, 25 April 2025, and was published on the company’s website on 23 April 2025. No further details about the attack’s origin, methods or perpetrators were disclosed in the statement.