Menu
Browse

Stadt Nürnberg

Aliases: 3 aliases
Primary URL Location Industry
www[.]nuernberg[.]de
Country Germany
Government - Local Icon
Government - Local
Profile

Nuremberg is a municipal authority located in Germany that provides a range of public services to residents, businesses, and local institutions. Its official website offers interactive features such as a search engine, contact forms, and online service portals designed to facilitate civic engagement. The city also manages information technology resources for educational facilities, including the administration of Office 365 accounts for teachers and students across multiple schools. These digital services are intended to support communication, administrative tasks, and access to information for the community.

Nuremberg’s IT environment maintains a segregated network for school systems, which helps isolate security incidents from broader municipal operations. In April 2025, a distributed denial‑of‑service attack targeted the city’s website, overwhelming servers and making the site intermittently unavailable while disrupting the search engine and contact forms; internal IT systems remained unaffected and municipal experts applied mitigation measures that eventually restored normal access. In October 2023, a sustained DDoS campaign used botnets to flood external servers with hundreds of thousands of simultaneous requests per minute, causing prolonged inaccessibility that required persistent defensive efforts even after partial service restoration; officials confirmed that no internal administrative systems or data were compromised and explicitly ruled out paying any ransom despite acknowledging possible financial motives. In December 2022, a phishing attack compromised login credentials from sixteen teacher and student accounts across nine schools, with the stolen data offered for sale on the Darknet and affecting Office 365 access to tools such as Teams, Word, and Excel; as a precaution nearly ten thousand accounts were temporarily disabled, most were reactivated after security reviews, and the city enforced mandatory twelve‑character password resets for all Office accounts. The phishing incident was detected during routine monitoring and did not impact city administration systems owing to the segregated IT structure, prompting notifications to regional school offices and state agencies and ongoing investigations to determine the full scope. As a public entity, Nuremberg operates under municipal governance without a parent company or subsidiary structure reported in the available sources.

Incidents
Linked incidents available to members
3 incidents