Cyber Incident Victim: City of Dresden

On October 12, 2023, the official website of Dresden, Saxony (dresden.de), experienced a cyberattack that disrupted public access to its services. The incident began when attackers launched a Distributed Denial of Service (DDoS) attack against the city's web infrastructure, overwhelming servers with excessive traffic. This caused intermittent outages starting Thursday afternoon, with the website becoming partially or completely unreachable for an unspecified period. Municipal authorities detected the attack in progress and activated defensive protocols to contain the impact. By approximately 3:30 PM local time, technicians successfully restored full functionality to dresden.de after mitigating the malicious traffic flood. The attack did not compromise internal city systems or sensitive data, as the targeting remained confined to public-facing web servers.

Prof. Dr. Michael Breidung, head of Dresden's municipal IT service (Eigenbetrieb IT), confirmed all implemented security measures effectively neutralized the attack and prevented escalation. The defensive response included traffic filtering and infrastructure scaling to absorb the volumetric assault characteristic of DDoS campaigns. No secondary intrusion attempts or data breaches occurred during or after the incident. Service disruption remained limited to temporary accessibility issues for residents attempting to access the city portal, with no reported downstream effects on other municipal operations. The city characterized the attack’s consequences as short-term operational degradation without lasting damage to systems or services.