Cyber Incident Victim: Stadt Fürth

The website of the City of Fürth, fuerth.de, was targeted in a distributed denial-of-service (DDoS) attack over multiple days beginning in early March 2024. Attackers coordinated simultaneous high-volume requests from multiple IP addresses across different countries, deliberately overwhelming the site's server capacity. This sustained traffic surge caused severe server load fluctuations and complete service collapses during peak attack periods. The server infrastructure became intermittently unavailable to legitimate users due to resource exhaustion. IT specialists from the city's contracted hosting agency detected anomalous traffic patterns and implemented countermeasures to restore service availability. Their primary mitigation strategy involved identifying and blocking malicious IP addresses associated with the attack traffic.

Technical responders achieved substantial success in containing the attack through these IP-blocking measures, though residual malicious activity continued to target the website. Intermittent service disruptions and performance degradation persisted as defenders worked to neutralize remaining attack vectors. The City of Fürth formally reported the incident to Bavaria's Central Cybercrime Contact Point (ZAC) at the State Criminal Police Office on March 9, 2024, while simultaneously notifying the Bavarian State Office for Information Security. No data breaches or system compromises beyond the availability impact were disclosed in the public notification. Operational challenges remained active at the time of reporting as defenders addressed ongoing attack attempts against the web infrastructure.