According to the Ministry of Digital Government, cyberattacks on the cadastre registry have been massive, with the number of attacks in the last 24 hours topping 400.
The latest cyberattack was, in fact, recorded at 5am today but was thwarted.
However, the Ministry of Information Technology assures that although an attempt was made, “no malicious user intrusion into the Database was achieved”.
It is clarified that information about “gaining access to the Database” does not correspond to reality, “which is confirmed both by the contractor’s Security Operation Center and by the relevant government agencies managing the attack, including the Cyber Security Directorate of the General Staff of the Armed Forces.”
It was determined that what happened was a breach of one of the backups “but the attempt to export data (data exfiltration) to a foreign server failed.” It is noted, in fact, that the Cadastre registry produces daily copies of the database.
At the same time there was a breach of employees’ computers of the Cadastral Office from which data totaling 1.2 GB of the total volume of 200 TB available to the Cadastral Office was extracted so far, i.e. 0.00059%.
“The type of files hijacked so far does not concern personal data of citizens, but typical administrative documents of services that do not affect the proper functioning of the Cadastre,” the Ministry of Digital Governance clarified.
The investigation so far has also found no ransomware software, and the actions taken drastically reduce this risk.
The measures taken
At the measures level, all Land Registry employees were initially asked to change passwords and implement (those who had not already done so) a 2FA (2 factor authentication) protocol.
At the same time, all access via VPN was cut off in order to block malicious users.
Finally, as the Ministry of Digital Governance assures, “with a great effort of all parties involved, the digital services worked and continue to work uninterrupted so that transactions are not affected.”
