Cyber Incident Victim: Province des îles Loyauté

On December 7-8, 2023, the Province des îles Loyauté in New Caledonia experienced a ransomware attack that disrupted its digital infrastructure. The malicious software encrypted files and blocked employee access to all data systems during the overnight hours, with initial encryption activity detected at 3:00 AM local time. Wacapo Taïn, the provincial director of digital systems, confirmed staff discovered the compromise when personnel could no longer access operational data on Friday morning. Attackers demanded a $1 million USD ransom (approximately 110 million XPF) to restore system access. Technical teams immediately mobilized on Friday and worked throughout the weekend to assess damage and restore services, prioritizing recovery efforts to achieve functional operations by Monday. Preliminary investigations revealed that attackers compromised at least one primary data site, though technicians successfully retrieved uncorrupted backups from another provincial infrastructure location.

The provincial government filed an official complaint with the Wé gendarmerie in Lifou on Friday afternoon, triggering involvement of the Public Prosecutor's Office and activation of the gendarmerie's cybercrime unit established in 2021. Recovery efforts focused on rebuilding infrastructure integrity while conducting comprehensive data audits to prioritize restoration of essential services. Technical personnel worked to sanitize recovered backups and prepare systems for partial reactivation, targeting optimal functionality by Sunday with acknowledgment that certain departments would receive priority. No data exfiltration was mentioned in initial reports, with impact confined to system accessibility and data encryption. The incident occurred during a period of heightened political sensitivity in New Caledonia, though no direct connection was established between the attack timing and the territory's historical referendum context within the available information.