Cyber Incident Victim: Swisscom

On August 23, 2024, Swisscom experienced a significant distributed denial-of-service (DDoS) attack beginning at approximately 11:30 AM local time. The cyberattack targeted the telecommunications provider's infrastructure, specifically disrupting payment services including Twint mobile payments and various E-Banking platforms. Swisscom technicians immediately initiated defensive measures while working under high pressure to restore functionality. During the attack period, customers experienced service interruptions affecting financial transactions, though Swisscom's core residential services—internet access, television broadcasting, and landline/mobile telephony—remained fully operational throughout the incident. By 4:00 PM the same day, Swisscom successfully mitigated the attack and restored all affected payment systems to normal operation. Company spokesperson Annina Merk confirmed the resolution to Keystone-SDA news agency, noting that E-Banking and mobile payment services resumed functionality following the defensive actions.

The incident involved attackers bombarding Swisscom's servers with excessive traffic volumes, overwhelming systems responsible for processing financial transactions. While Swisscom routinely defends against daily cyber threats, company representatives characterized this midday Friday attack as unusually large in scale. Technical teams maintained continuous intensive monitoring of network systems even after mitigating the primary attack vectors as a precautionary measure. Swisscom publicly acknowledged the attack through communications with media outlet 20 Minuten, which first reported the incident, but disclosed no identifying information about potential perpetrators or their motivations. The company's infrastructure successfully isolated the attack's impact to payment processing systems, preventing collateral damage to other customer-facing services during the nearly five-hour disruption window.