Cyber Incident Victim: Austria

A cyberattack targeting a Graz-based IT company occurred during the weekend of March 10, 2024. The company, which manages approximately 80 databases for real estate firms, experienced unauthorized access to its systems. Among its clients is Klagenfurt Wohnen, a municipal housing provider owned by the city of Klagenfurt, whose customer data was potentially compromised in the breach. Initial reports from Kleine Zeitung indicated the incident might constitute a significant data leak, though the full scope remained unconfirmed at the time of disclosure. The attack specifically impacted servers managed by the IT firm, which had been contracted by Klagenfurt Wohnen for data management services. Valentin Unterkircher, head of Klagenfurt’s city communications department, acknowledged the incident but stated the severity and consequences of the breach were still under assessment. No technical details regarding the attack vector, such as ransomware deployment or phishing mechanisms, were disclosed in available reports.

Klagenfurt Wohnen’s involvement was confirmed through independent research by Kleine Zeitung and later validated by Der Standard, which cited Unterkircher’s confirmation via an APA (Austria Press Agency) inquiry. The municipal representative emphasized that the investigation into the intrusion’s repercussions was ongoing, with no definitive timeline for resolution. Neither article specified whether customer data had been exfiltrated, published, or misused, nor did they identify the attackers or their motives. The IT firm’s name and the exact number of affected clients beyond Klagenfurt Wohnen were not disclosed. Public statements focused exclusively on the potential exposure of Klagenfurt Wohnen’s customer database, with no elaboration on data types involved, such as financial records or personal identifiers. No containment measures, forensic findings, or recovery actions were described in the sourced material.