March 20, 2022
Ransomware hit ELTA encrypting its systems and halting operations in a major service disruption. “Threat actors exploited an unpatched vulnerability to drop malware that allowed access to one workstation using an HTTPS reverse shell.” To stop the spread, they shut down all data centers. Online parcel tracking and labelling is also down for customers. Full service was restored by April 6th. The attack affected mail system, financial transactions and bill payments.
November 11, 2022
More than 800 services of Greece’s Gov.gr and TAXISnet, as well as medical prescriptions, were frozen by an unprecedented DDoS attack. The cyberattack reportedly came from the Netherlands and attempted to temporarily take down or even completely stop the operation of approximately 800 Government websites. Among the problems caused, was to disabling electronic prescriptions. Doctors on call could only issue handwritten prescriptions on the weekend, on-call pharmacies could not fill emergency prescriptions, nor could hospital doctors prescribe to patients in emergency rooms.
As of Sunday afternoon (2 days later) about 600 websites had been “cleaned up” and were allowed access again after initializing settings.
March 20, 2022
Ransomware hit ELTA encrypting its systems and halting operations in a major service disruption. “Threat actors exploited an unpatched vulnerability to drop malware that allowed access to one workstation using an HTTPS reverse shell.” To stop the spread, they shut down all data centres. Online parcel tracking and labelling is also down for customers. Full service was restored by April 6th.
Impact: Ransomware halted all mail, financial transactions and bill payments thru the national carrier
August 19, 2022
Greece’s largest natural gas supplier, DESFA, said Saturday it fell victim to a cyberattack on part of its IT infrastructure by cybercriminals who tried to gain access to electronic files and with a confirmed impact on the availability of certain systems and possible leakage of a number of files and data.
Ragnar Locker ransomware group claimed them as its victim on Friday by leaking some of the DEFSA data.
“We managed to ensure and continue the operation of the National Natural Gas System (NSGS) in a safe and reliable manner,” the company said in an advisory. “The management of DESFA continues to operate smoothly and DESFA continues to supply natural gas to all entry and exit points of the country safely and adequately. We are investigating the root causes of the attack and have mobilized teams of technical and specialist experts to assist us in this matter and in getting the systems back up and running as soon as possible.”
October 31, 2021
Several Greek shipping companies fell victim to a cyber attack on Halloween over the weekend, resulting in the loss of important files. The companies affected used the communication systems of Danaos Management Consultants and came in direct contact with the company. Reportedly, the cyber attack blocked their communication with ships, suppliers, agents, charterers and supplies, while at the same time the files with their correspondence were lost.
Danaos Management Consultants sent instructions to its customers, asking them among other things to back up critical files to external hard drives. Danaos is among the oldest maritime IT companies and could face litigation.