Swiss Federal Assembly

The Swiss Parliament, also known as the Federal Assembly or Bundesversammlung, functions as the federal legislature of Switzerland. It holds the supreme legislative authority within the Swiss political system, responsible for enacting federal statutes, approving international treaties, and exercising oversight of the federal government. Its core mandate involves representing the Swiss citizenry in the lawmaking process and shaping the nation's legal and policy framework. The institution operates from its headquarters in Switzerland, serving as a central pillar of the country's direct democracy. Its work encompasses a wide range of national issues, from economic regulation to social policy and national defence. The Parliament's decisions directly impact all Swiss residents and the nation's standing in international affairs. As a critical component of state infrastructure, its digital services and communications are essential for governmental continuity and public engagement. The legislative body's operations inherently involve handling sensitive governmental and operational data, making it a potential target for malicious actors. Its official website serves as a primary public interface for information, parliamentary documents, and citizen services.

The organisation's role as a national legislative hub has placed it in the crosshairs of significant cyber threats, underscoring its status as critical infrastructure. In May 2023, the Swiss Parliament's website was disabled by a distributed denial-of-service attack attributed to the pro-Russian hacktivist group NoName, which caused substantial public access issues. This DDoS incident occurred contemporaneously with a separate but related ransomware attack on a federal government IT supplier, Xplain. The Xplain breach resulted in a major data leak containing operational and potentially sensitive federal data, the scope of which may have included information pertaining to parliamentary functions. These concurrent attacks highlighted the Parliament's vulnerability to both disruptive hacktivism and data-exfiltration campaigns targeting the broader government ecosystem. The events demonstrated how supply-chain compromises can indirectly threaten legislative institutions by exposing associated operational data. The persistent targeting of the Parliament's digital assets reflects its symbolic and practical importance to Swiss national governance. Such incidents necessitate robust cybersecurity measures to protect legislative continuity and the confidentiality of state affairs. The attacks also illustrate the evolving threat landscape where geopolitical motives intersect with criminal ransomware operations against state-affiliated entities.