Cyber Incident Victim: Turin Territorial Housing Agency

On or around April 10, 2021, the Turin Territorial Housing Agency (Agenzia Territoriale per la Casa - ATC) experienced a cybersecurity incident involving unauthorized access to its website. The agency’s IT technicians detected anomalies in their telematic systems, leading to the discovery of the breach. Initial investigations indicated the involvement of professional foreign hackers, though no specific threat actor group or ransomware variant was identified in public reports. The attackers demanded a ransom payment of $700,000, though the precise nature of their leverage—whether data encryption, theft, or another disruptive action—was not disclosed. ATC, responsible for managing affordable housing programs for underprivileged communities through public housing redevelopment and subsidized construction, immediately engaged law enforcement by reporting the incident to Italy’s Postal Service Police (Polizia Postale).

The agency publicly declared its refusal to negotiate with or pay the attackers, opting instead to rely on law enforcement intervention. No evidence emerged confirming whether resident data, housing applications, or financial systems were compromised or exfiltrated. The attack disrupted the agency’s online presence, though operational impacts on housing services or internal systems remained unspecified. ATC’s response focused on containment through technical remediation and criminal investigation, with no subsequent disclosures regarding system restoration timelines or forensic findings. The incident highlighted risks to public housing authorities managing sensitive applicant data and critical allocation systems, though concrete operational or financial consequences beyond the ransom demand and temporary website disruption were not substantiated in available reporting.