Massive cyber attacks target key websites in Cyprus

In the past 24 hours, Cyprus has been hit by a series of major cyber attacks, targeting both government websites and critical internet infrastructure. Six incidents have been recorded since Friday, affecting both public services and private businesses. These attacks, while disruptive, have so far been successfully countered.

The cyber assault began on Friday with an attack on the Hermes Airport website, which was quickly managed without affecting any airport services. According to Maria Kouroupi, Hermes' Director of Aviation Development and Communications, “Our website is purely informational and not connected to other airport systems, so no services were interrupted."

Later that day, the Bank of Cyprus became the next target. Hackers attempted to carry out a Distributed Denial of Service (DDoS) attack, aiming to make the bank's websites inaccessible. However, the bank’s security systems fended off the attempt, and its websites continued operating normally.

That same evening, the Cyprus Electricity Authority (EAC) was also targeted. EAC Chairman George Petrou reassured the public that the authority constantly monitors its systems and has stringent security measures in place to protect its digital infrastructure. Like the earlier attacks, this one was swiftly dealt with.

On Saturday, two more companies were hit—Cyprus Telecommunications Authority (CYTA) and the fuel company EKO Cyprus Limited—both of which successfully repelled the attacks without any impact on their operations.

Government websites were also targeted on Sunday, in an attempt to disrupt the availability of public information portals. However, the Ministry of Research, Innovation, and Digital Policy reported that the attack was countered quickly, with only a brief disruption to the main gov.cy portal. No other state websites or services were affected.

Despite these attacks, authorities are urging calm. Cyprus Electronic Communications and Postal Regulation Commissioner, George Michaelides, acknowledged the possibility of further attacks, especially given the current geopolitical tensions in the Middle East. However, he emphasized that the country remains on high alert and is prepared for any further incidents.

The Ministry of Research, Innovation, and Digital Policy confirmed that all the attacks were of the DDoS variety, which aims to overwhelm websites with traffic and make them inaccessible. Importantly, no data breaches or deeper security violations have occurred.

Authorities continue to monitor the situation closely and are urging both businesses and the public to remain vigilant as these incidents unfold.