Cyber Incident Victim: Government and Police of Mecklenburg-Vorpommern
Date:
May 2024
Location:
Germany
Summary
A cyberattack disrupted websites of the Mecklenburg-Vorpommern state government, police, and domestic intelligence service, causing limited accessibility. The incident involved distributed denial-of-service (DDoS) attacks overwhelming servers with excessive traffic, mirroring previous attack patterns attributed to a Russian group in prior incidents. Technical teams from the state's IT service provider worked to contain further attack waves, though authorities warned of potential continued disruptions. The assault primarily affected specialized departmental pages, echoing similar disruptions targeting police sites in earlier attacks.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On May 23, 2024, hackers disrupted the websites of the Mecklenburg-Vorpommern state government and police through a cyberattack, causing partial outages. The incident began in the morning, rendering various internet portals of the state government, state police, and Office for the Protection of the Constitution (Verfassungsschutz) intermittently inaccessible. State Digitalization Minister Christian Pegel (SPD) confirmed the attacks resembled previous incidents from April and November 2023, with initial analyses identifying them as distributed denial-of-service (DDoS) attacks. These attacks overwhelmed servers with massive artificial traffic volumes to degrade functionality. The state’s IT service provider, Datenverarbeitungszentrum (DVZ) M-V, which hosts and maintains these websites, reported primary impacts on specialized departmental pages rather than core portals. Technical teams worked intensively to contain ongoing attack waves, though authorities warned of potential continued disruptions. No data breaches or compromised internal systems were reported, with damage confined to temporary service degradation.
This marked at least the third major DDoS incident affecting Mecklenburg-Vorpommern’s digital infrastructure within 13 months. In November 2023, attackers had specifically targeted state police websites, while April 2023 saw broader cyberattacks impacting multiple German federal states, including Mecklenburg-Vorpommern. The 2023 November attack was publicly claimed by a Russian hacker group according to contemporaneous Interior Ministry statements, though no attribution was provided for the May 2024 incident. Response efforts focused on filtering malicious traffic and reinforcing server capacity, with DVZ M-V specialists prioritizing mitigation of recurrent attack patterns. Service restoration proceeded incrementally, though officials cautioned that specialized agency portals might remain unstable during subsequent attack waves. Operational continuity measures ensured critical government functions remained unaffected despite persistent website accessibility issues.