Q-Park

Q-Park, also known as QPark, is a parking management company headquartered in the Netherlands. The organization operates a network of parking garages across various Dutch cities, including Rotterdam, Gouda, Veenendaal, Hoofddorp, and Ede. Its core services involve providing parking facilities for customers, managing payment systems at terminals, and ensuring access control within its garages. The company's operations are centered on facilitating urban parking solutions, serving both daily commuters and visitors to local events, as indicated by references to event-related access limitations during the 2017 incident.

In May 2017, Q-Park experienced a significant cybersecurity incident when it was targeted by the WannaCry ransomware attack. This global campaign encrypted files across the company's systems, disrupting payment functionalities and website operations at multiple locations. Despite the encryption of payment terminals, the garages remained accessible to customers through intercom assistance and on-site staff, allowing continued use while technical teams worked on restoration. The incident marked Q-Park as the first known Dutch victim of the WannaCry outbreak, which predominantly affected organizations in the UK, Russia, and Spain. Operational challenges persisted at five facilities for some time, highlighting the company's reliance on digital systems for transaction processing. The response involved coordinated efforts to restore normal operations while adapting to local constraints, such as event-driven access demands. This event underscores the vulnerability of critical infrastructure to widespread malware campaigns and the importance of incident response planning in the parking management sector.