Cyber Incident Victim: Municipio di Fabriano

On July 29, 2024, the Comune di Fabriano publicly disclosed service disruptions affecting municipal operations through an official Facebook post titled "⚠️ ‼️ 𝗗𝗜𝗦𝗦𝗘𝗥𝗩𝗜𝗭𝗜 𝗣𝗘𝗥 𝗔𝗧𝗧𝗔𝗖𝗖𝗢..." (Service Disruptions Due to Attack...). The announcement confirmed the disruptions resulted from a cybersecurity incident but did not specify the nature of the attack, affected systems, or operational impacts beyond generalized service interruptions. No technical details regarding intrusion methods, compromised infrastructure, or data exposure were provided in the communication. The post’s primary functional content focused on cookie consent management for Facebook platform interactions rather than incident specifics. Municipal authorities issued no immediate statements regarding incident response timelines, forensic investigations, or recovery progress through this channel.

The Facebook communication served as the sole public acknowledgment of the incident at the time of publication, with no supplementary press releases or technical bulletins referenced. The post’s structure prioritized compliance with Meta’s cookie consent requirements over incident documentation, dedicating approximately 90% of its content to explaining optional versus essential cookie usage for third-party services like maps and payment systems. This approach left critical questions unanswered regarding attack vectors, containment measures, threat actor attribution, and restoration efforts. Service disruptions remained unresolved at the time of the announcement based on the absence of recovery timelines or mitigation updates. The municipality did not specify whether essential services like emergency communications, utilities, or administrative functions were impaired by the attack.