Cyber Incident Victim: Spain

On January 8, 2023, the Durango City Council in Spain experienced a cyberattack of unknown origin that disrupted municipal operations. The attack was detected on Sunday morning, prompting immediate notification to Spanish authorities and the National Cryptologic Center (CCN). Municipal IT personnel, assisted by external cybersecurity experts, initiated an assessment to determine the extent of compromise to system integrity and security. Preliminary analysis confirmed significant operational impacts, particularly affecting the Citizen Service Center (SAC), which suffered severe service degradation. Other unspecified municipal services also experienced disruptions, with officials warning residents that service availability might remain limited or altered during recovery efforts. No details regarding the attack vector, perpetrator identity, or data compromise were disclosed at this stage.

Response efforts focused on containment and damage assessment, with no restoration timeline provided. The municipality maintained transparency about ongoing operational challenges but did not specify whether critical infrastructure or citizen data was accessed. Coordination with national cybersecurity entities continued as technicians worked to restore normal operations. Service limitations persisted during the initial recovery phase, though the scope of affected systems beyond the SAC remained undefined. The incident marked a notable disruption to local governance capabilities, with recovery priorities centered on system integrity verification before full service restoration.