Agencija za privredne registre / Aгенција за привредне регистре

The Serbian Business Registers Agency (SBRA), known in Serbian as Agencija za privredne registre, serves as the central national authority for the registration and maintenance of business entities and related legal records in Serbia. Its core function is to administer the official business register, providing mandatory registration services for companies, entrepreneurs, and other economic operators. This includes the processing of foundational documents such as founding acts, as well as ongoing mandatory submissions like annual financial statements. The agency operates a comprehensive suite of electronic services, commonly referred to as eServices, which facilitate online submissions, document retrieval, and registry searches for legal entities, branches, and other registrable subjects. By maintaining these authoritative public registers, the SBRA underpins legal certainty in commercial transactions, supports state revenue collection through accurate taxpayer data, and enables transparency for market participants and the general public. Its services are essential for the formalization and operation of the entire Serbian business sector, making it a foundational institution for the national economy.

The agency's operational scale and critical national role were evidenced during the distributed denial-of-service (DDoS) attacks it sustained on March 26, 2023. These attacks targeted its web services, causing intermittent disruptions to its website, email, and online service portal. Despite the malicious attempt to overwhelm its systems and prevent user access to eServices, the SBRA's core databases and stored data were not compromised. During the attack period, the agency continued its statutory work, processing over 15,500 financial statements alongside other electronic submissions, demonstrating significant daily transaction volume. The incident was formally reported to Serbia's national cybersecurity authorities. Following the attack, the agency's IT defenses were strengthened, and it worked to restore full, stable access to its services, managing residual interruptions during the recovery phase. This event highlights the SBRA's position as a high-profile, digitally-dependent government entity that handles sensitive commercial data, necessitating robust cybersecurity measures to ensure the continuity of its legally mandated services for the Serbian business community.