Cyber Incident Victim: Cepro
Date:
Aug 2016
Location:
Czechia
Summary
Anonymous hackers conducted DDoS attacks against companies owned by the Czech Finance Minister, including Cepro, in protest of new online gambling legislation they claimed could enable broader internet censorship. The group, operating under #OpBlokada, asserted the law granted excessive authority to block websites and warned of further actions, while the government maintained the measures were aimed at combating tax evasion in the gambling industry.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On August 1, 2016, the Czech and Slovakian divisions of the Anonymous hacker collective launched distributed denial-of-service (DDoS) attacks against multiple private companies owned by Czech Finance Minister Andrej Babiš. The operation, dubbed #OpBlokada, specifically targeted Agrofert, Hyza, Cepro, Preol, Penam, Uniles, and Wotan Forest – all entities within Babiš's business portfolio. These attacks were executed as a direct response to the Czech government's passage of controversial online gambling legislation spearheaded by Babiš, which granted authorities the power to block unlicensed gambling websites nationwide. The hackers characterized their actions as hacktivism, releasing a YouTube statement that framed the gambling law as a dangerous precedent for broader internet censorship. They argued the legislation gave the Finance Ministry "almost unlimited authority to censor the internet" under the guise of regulating gambling, warning that the state-controlled blacklist mechanism could expand to suppress other types of online content in the future.
The DDoS disruptions were intentionally short-lived, described by the collective as demonstrative actions rather than sustained assaults, though they threatened further attacks in subsequent days. The Czech government had defended the gambling law as a necessary tool to combat tax evasion within the industry, estimating significant revenue losses from unlicensed operators. Anonymous countered that the financial justification masked more concerning implications for digital rights, asserting that centralized blocking infrastructure could be repurposed for political censorship. No technical details about attack vectors, mitigation efforts, or service restoration timelines were disclosed in available reports. The incident highlighted tensions between regulatory approaches to online commerce and concerns about state overreach in internet governance, with critical infrastructure operators like Cepro becoming collateral targets in politically motivated cyber campaigns. The Finance Ministry did not publicly acknowledge operational impacts from the attacks beyond confirming their occurrence.