Cyber Incident Victim: OneLog AG
Date:
Oct 2024
Location:
Switzerland
Summary
A hacker attack disrupted OneLog, a central Swiss media login platform used by over 40 online portals, causing widespread login failures and impairing access to subscriber content. The incident forced affected media outlets, including Tamedia and Ringier, to temporarily remove paywalls and open e-paper access to maintain user accessibility. Commenting functionalities tied to the platform were also disabled. While CH Media and NZZ hold stakes in OneLog, they remained unaffected as they had not yet implemented the service. Technical teams were actively working to resolve the outage at the time of reporting.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On October 23, 2024, a cyberattack targeted OneLog AG, a centralized Swiss media login platform used by over 40 online portals including major publishers Tamedia, Ringier, and SRG. The attack disrupted authentication services, rendering users unable to log in to affiliated media platforms starting Thursday. Tamedia confirmed the outage in an official communication, noting that its digital properties implemented temporary measures to maintain content accessibility by removing paywalls and opening e-paper access. Other affected media organizations adopted similar contingency plans to ensure subscribers could reach content despite the authentication failure. The incident also impaired interactive features, with Tamedia specifying that article commenting functionalities became unavailable due to their integration with OneLog’s compromised systems. Technical teams worked to restore services, though no restoration timeline or attack attribution details were disclosed.
OneLog, launched three years prior to the incident, served as critical identity infrastructure for Swiss digital media but had not yet been adopted by all stakeholders. Shareholders CH Media and NZZ remained unaffected since they hadn’t implemented the platform, highlighting the incident’s contained scope to active users. The disruption demonstrated dependencies on centralized authentication systems, with operational impacts including suspended subscriber logins, disabled user engagement tools, and emergency bypasses of revenue-generating paywalls. Response efforts focused on maintaining content delivery while OneLog’s technical resolution remained ongoing at the time of reporting. No data breaches or additional attacker objectives beyond service disruption were indicated in available communications.