3 August 2021

Hackers disrupted COVID-19 vaccinations in Italy


Hackers disrupted COVID-19 vaccinations in Italy

Italian authorities have opened an investigation into a "very serious" attack on the IT system of the health department of Lazio, one of the most populated regions of Italy, which includes the city of Rome that targeted an official website for booking COVID-19 vaccinations.

The website was unavailable for several hours on Sunday preventing citizens from booking appointments for a coronavirus vaccine, as well as other services, according to a statement posted to the official Lazio government Facebook page.

Nicola Zingaretti, president of the Lazio Region, said that the initial attack took place on Saturday night into Sunday morning and that it "blocked almost all of the files in the data center."

While the government officials did not say who was behind the incident, the local media reported that cyberattack appears to have been launched by hackers affiliated with a ransomware group.

The attackers reportedly breached computer systems of LAZIOCrea, a third-party company in charge of scheduling and booking vaccination appointments, and from there they were able to deploy malware, which encrypted data on the system, including data associated with a large public health database.

Local authorities said they have received a generic ransom request but with no further claims.

Zingaretti said that 70% of adult population in Lazio have been vaccinated, despite the cyberattack.

Back to the list

Latest Posts

FIN7 cybercrime gang offers new EDR bypass tool on dark web

FIN7 cybercrime gang offers new EDR bypass tool on dark web

AvNeutralizer is being advertised for prices ranging between $4,000 and $15,000 on various cybercrime forums.
17 July 2024
Critical Apache HugeGraph vulnerability exploited in the wild

Critical Apache HugeGraph vulnerability exploited in the wild

Users are strongly recommended to upgrade to the fixed version as soon as possible.
17 July 2024
TAG-100 cyberspies target Citrix, F5, Cisco appliances in at least 10 countries

TAG-100 cyberspies target Citrix, F5, Cisco appliances in at least 10 countries

The threat actor has employed the Go-based backdoors Pantegana and SparkRAT for post-exploitation.
17 July 2024