Cyber Incident Victim: Reutlinger General-Anzeiger

On May 1, 2025, the Reutlinger General-Anzeiger published a notice on its website informing users of a cyber incident affecting the gea.de domain. The notice stated that an unidentified vulnerability on the website had been exploited, allowing unknown actors to view and possibly copy usernames and email addresses of registered users. Upon discovering the vulnerability, the newspaper’s technical team immediately closed the security gap to prevent further unauthorized access. The incident was identified through internal monitoring that detected unusual access patterns on the web server. No other personal data, such as passwords or payment information, was mentioned as being compromised in the notice.

After securing the website, the Reutlinger General-Anzeiger notified the relevant data protection and law‑enforcement authorities in Baden‑Württemberg and began cooperating with their investigation. The organization appointed its data protection officer, reachable at [email protected], to handle inquiries related to the breach. Management expressed regret for the inconvenience caused to users and affirmed that work is underway to determine the full scope of the attack and to strengthen the website’s security measures. The newspaper also engaged external cybersecurity specialists to conduct a forensic analysis of the affected systems. The notice indicated that steps are being taken to prevent similar incidents in the future.