Cyber Incident Victim: Schriesheim, Baden-Württemberg, Germany (Rhein-Neckar district)

On or around April 16, 2022, the municipal administration of Schriesheim in Baden-Württemberg's Rhein-Neckar district experienced a cyberattack targeting its town hall systems. The attackers followed through on a prior threat by publishing stolen municipal data on the darknet—a hidden segment of the internet enabling anonymous activity—by Saturday, April 16. This data exposure occurred despite initial assessments that may have underestimated the attack's severity. The nature and sensitivity of the compromised information remained under active investigation as of April 19, with authorities working to identify which specific datasets were exfiltrated and published. The incident confirmed predictions made by IT security expert Michael Jan Deissner, who had warned the Rhein-Neckar-Zeitung approximately one week prior that a darknet data leak represented the most severe potential outcome of the breach.

In response to the confirmed data exposure, the City of Schriesheim established a dedicated hotline to address public inquiries regarding the incident. Municipal officials acknowledged the escalation from initial breach to actual data dissemination, though they did not disclose technical details about the attack vector, scope of compromised systems, or containment measures undertaken. The publication of municipal data on darknet platforms created tangible risks of misuse, necessitating public communication through local media channels. No further details were provided regarding operational disruptions, financial impacts, or potential identity protection measures for affected residents. The incident highlighted vulnerabilities in local government infrastructure within the region, though comparative analysis with other municipalities or broader threat trends was not addressed in available reporting.