Cyber Incident Victim: Komwag
Date:
Oct 2024
Location:
Czechia
Summary
A Prague-based company experienced a foreign-origin cyberattack causing internal system disruptions, potentially affecting waste collection schedules due to navigation system dependencies. The organization apologized for service impacts but confirmed core operations—including waste disposal, infrastructure maintenance, and greenery management—continue with minimal interruptions, maintaining standard customer communication channels. Criminal authorities were notified of the incident.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
Komwag, a Prague-based company, experienced a disruptive cyberattack over a weekend in late September or early October 2024, resulting in significant internal system outages. The attack originated from foreign actors, though specific attribution or technical details of the intrusion method were not disclosed publicly. Primary operational impacts emerged in waste management services, particularly irregularities in trash collection schedules. This disruption stemmed from compromised navigation systems used to coordinate waste collection vehicle routes, indicating that the attackers likely targeted or disrupted operational technology (OT) components integral to logistics planning. While core municipal maintenance functions—including road upkeep and greenery management—remained operational, the incident revealed dependencies on interconnected digital systems for routine service delivery. No data theft or ransomware demands were mentioned in available reporting, suggesting the attack may have focused on disruption rather than financial extortion or data exfiltration. The company did not specify downtime duration or restoration timelines for affected systems.
Komwag's leadership issued a public apology acknowledging potential service impacts on residents and commercial customers across Prague. They emphasized continuity of critical services with "minimal impacts," maintaining all standard communication channels (phone and email) for public inquiries despite internal IT disruptions. The company formally reported the incident to Czech criminal investigative authorities, though no law enforcement agency or specific investigation details were referenced. Operational adjustments were implied but not detailed beyond references to persisting waste collection irregularities. No customer data breaches, financial losses, or third-party collateral damage were cited as direct consequences. The response prioritized service assurance and transparency regarding known limitations, without disclosing mitigation strategies, forensic findings, or long-term recovery plans.