In the past 24 hours, at least 26 reported cyberattacks have targeted Spanish governmental and private sector websites, allegedly by pro-Russian hacktivist groups.
A Broader Attack
According to El Economista the incidents appear to be a retaliatory response to the recent arrest of three individuals by Spanish authorities.
The cyberattacks primarily involved denial-of-service (DDoS) assaults, which overwhelmed servers and rendered websites inaccessible.
Key targets included high-level state and regional government websites. Notably, the Basque Parliament's website was attacked, with the group Cybervolk claiming responsibility.
Cybervolk is a pro-Russian hacktivist group that has been involved in cyber activities targeting various institutions and organizations. The group's actions are typically politically motivated, aligning with Russian geopolitical interests.
Other affected sites included the corporate website of the Platform for State Contracting, which is managed by Spain's Ministry of Finance. A spokesperson for the ministry confirmed that the incident was part of a broader attack affecting various government and public administration sites.
Attack on Security Firm
On Monday, cyberattacks disrupted the websites of La Moncloa (the Prime Minister's office), the Constitutional Court, and several regional parliaments, including those of Galicia, the Basque Country, and Andalusia.
Additional targets included the General Assembly of the Principality of Asturias, the Madrid Court of Arbitration, the Spanish Agency for International Development Cooperation, the Spanish Road Association, and the Ministry of Foreign Affairs, European Union, and Cooperation.
Private sector companies were also hit, including the security firm Trablisa and energy companies Nexus Energía and Sedigas. Despite the alert, Sedigas reported that their security systems effectively protected their networks from any significant breach.
Furthermore, the National Police website and the Valencia City Council's site were also attacked, alongside port authorities in Palma de Mallorca, Vigo, Cartagena, Huelva, and Castellón.
As investigations continue, Spanish authorities and cybersecurity experts are working to restore services and prevent further disruptions.