Cyber Incident Victim: Conseil régional de la Guadeloupe

The French overseas department of Guadeloupe experienced a disruptive cyberattack on November 21, 2022, prompting immediate activation of a government continuity plan to maintain essential administrative functions. Regional authorities publicly confirmed the incident through official communications, revealing they had engaged cybersecurity experts and mobilized response teams to contain the damage. By November 25, technical analysis remained ongoing to determine the full scope of compromised systems and restore normal operations. Initial assessments indicated that critical infrastructure under regional jurisdiction—specifically high school administration and public transportation systems—had not been breached. Government statements acknowledged widespread citizen concerns while emphasizing staff efforts to prioritize service restoration, framing the attack as an inevitable risk in modern operations.

Response efforts involved coordinated action with multiple French national agencies, including the National Information Systems Security Agency (ANSSI), data protection authority CNIL, and law enforcement bodies. Authorities issued public warnings about potential phishing attempts via SMS and WhatsApp, advising citizens against interacting with suspicious messages or attachments. The attack disrupted unspecified government services beyond the preserved high school and transit systems, though technical details about attacker methodologies or compromised data were not disclosed. This incident occurred amid a wave of similar cyberattacks targeting small island governments, notably the November 2022 ransomware attack that paralyzed Vanuatu's national infrastructure for weeks. Guadeloupe's administration refrained from commenting further when contacted by media, maintaining focus on recovery operations without confirming whether ransomware was involved or if data exfiltration occurred.