Cyber Incident Victim: Comune di Alcamo

On March 1, 2025, a coordinated wave of distributed denial-of-service (DDoS) attacks targeted Italian municipal and regional government websites, marking the second such incident affecting Verona’s systems within a week. The attacks impacted the official websites of the municipalities of Verona, Rome, Milan, and Catania, alongside regional government portals for Lazio, Piedmont, Puglia, and Valle d’Aosta. Attackers flooded these sites with fraudulent traffic requests in an attempt to disrupt normal operations by overwhelming server capacity. The transport sector was also identified as a secondary target, though specific entities were not detailed in initial reports. Verona’s municipal site experienced temporary inaccessibility during the incident, though no other locations reported prolonged outages. Cybersecurity analysts confirmed the attacks followed a similar DDoS methodology to those observed in the prior Verona incident, which had occurred fewer than seven days earlier.

National Cybersecurity Agency personnel activated monitoring protocols to track attack patterns and mitigate disruptions. No data breaches, system compromises, or permanent damage to infrastructure were confirmed across the affected entities. Service restoration efforts prioritized maintaining public access to critical municipal portals, with Verona’s site returning to functionality after brief interruptions. The agency refrained from attributing responsibility for the attacks and did not disclose technical specifics of the mitigation measures employed. Impact assessments indicated minimal operational consequences beyond temporary accessibility issues, with no evidence of data exfiltration or secondary attack vectors. Monitoring continued post-incident to detect potential follow-on activity targeting the same entities.