Cyber Incident Victim: Telitec
Date:
Oct 2017
Location:
Spain
Summary
Anonymous conducted a coordinated DDoS attack targeting multiple Spanish entities, including the Constitutional Court's website, email systems, and internet services, alongside political parties, foundations, banks, and technology providers including Telitec. The disruption, part of their #OpCatalunya campaign advocating for Catalan independence, rendered services inaccessible for several hours before most were restored by evening. The hacktivist group had publicly announced these actions through social media channels, aligning with broader operations that previously compromised Spanish police and government databases. National security authorities had issued warnings about the planned attacks following prior incidents under the same banners.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On October 21, 2017, hacktivist group Anonymous executed coordinated distributed denial-of-service (DDoS) attacks against multiple Spanish entities, including technology provider Telitec. The attacks commenced around 2:00 AM local time, disrupting web services, email systems, and other internet-dependent operations at the Constitutional Court (TC), which remained inaccessible for over 16 hours. Telitec’s website was simultaneously targeted alongside political organizations (Partido Popular), financial institutions (Banca March), ideological groups (Francisco Franco Foundation), and other technology firms (Flexinet). This campaign formed part of Anonymous’ ongoing #OpCatalunya initiative, which had been publicly announced through their Twitter account @NamaTikure and confirmed by Spain’s Department of National Security in an official warning issued the preceding Friday. Attackers employed mass-traffic bombardment techniques to overwhelm target infrastructures, though most services—including Telitec’s—were restored to functionality by 6:30 PM that evening.
The operational timeline originated on September 24, 2017, when Anonymous released a manifesto video initiating #OpCatalunya to advocate Catalan independence. Prior attacks under this banner had compromised Spanish National Police and government databases. For the October 21 escalation, hacktivists coordinated a 24-hour DDoS blitz under hashtags #FreeCatalunya and #OpCatalunya, explicitly framing their actions as defending "freedom in Catalonia." While the Constitutional Court sustained the longest disruption, Telitec and other non-governmental targets experienced shorter outages without reported data breaches or persistent compromises. Spanish security authorities had anticipated the attacks based on recent weeks’ activity under identical operational branding, though no defensive measures preventing the disruptions were detailed in public reports. Restoration efforts for all entities concluded within the same business day, with no subsequent service degradation noted in available documentation.