Cyber Incident Victim: Caritasverband der Erzdiözese München und Freising e.V.

On September 12, 2022, Caritasverband der Erzdiözese München und Freising e.V. publicly confirmed it had fallen victim to a cyberattack that disrupted its operations. Attackers deployed ransomware against the organization's IT infrastructure, encrypting critical systems and exfiltrating sensitive data. The BlackCat ransomware group (also known as ALPHV) claimed responsibility for the breach, alleging they had stolen approximately 1.2 terabytes of internal documents containing personal information. The attack forced the Catholic charity organization to proactively shut down its entire network infrastructure to contain the damage, causing significant operational paralysis across its 600 facilities in the Munich archdiocese.

The incident severely impacted Caritas' ability to deliver social services, with counseling centers, refugee assistance programs, and donor management systems becoming temporarily inaccessible. Forensic investigators confirmed unauthorized access to human resources records containing staff personal data, client case files from social work departments, and internal administrative documents. While the organization collaborated with cybersecurity experts and law enforcement agencies to investigate the breach, full system restoration timelines remained unclear weeks after the initial compromise. The Bavarian Data Protection Authority was notified as required under GDPR regulations, though the exact number of affected individuals wasn't immediately disclosed. Operational recovery efforts prioritized restoring essential client services while investigators worked to determine the full scope of data exposure across the organization's compromised networks.