Cyber Incident Victim: Municipal Fire Department in Elbtal

On or around March 1, 2023, the municipal fire department in Elbtal, Germany, experienced a cyberattack disrupting its operations. The attack prompted an immediate response from local authorities, who initiated damage assessments to determine the extent of the compromise. Despite the disruption, critical alarm and dispatch systems remained operational, ensuring emergency response capabilities were not interrupted. The mayor publicly confirmed the continuity of alarm workflows, emphasizing that public safety functions had not been critically impaired. Officials did not disclose specific technical details regarding the attack vector, compromised systems, or data exfiltration, citing the ongoing nature of the investigation. The incident was reported to law enforcement, triggering the involvement of the State Criminal Police Office (Landeskriminalamt). No ransomware claims or threat actor attributions were publicly identified during the initial response phase.

The Landeskriminalamt assumed primary investigative responsibility, though no further details regarding forensic methodologies or suspect identification were released. Municipal leadership maintained public assurances regarding operational resilience while acknowledging the unresolved status of the damage assessment. No information was provided about potential data breaches affecting personnel or residents, nor were there disclosures about service delays beyond the initial disruption. The incident highlighted vulnerabilities in local government infrastructure without specifying mitigation steps already taken or planned. Investigations remained active with no conclusive findings or recovery timelines announced at the time of reporting.