Financial Crime World

Croatia’s Finance Sector and Hospital Under Cyber Attack: NoName057 Hacker Group Claims Responsibility

Coordinated Attacks Disrupt Government and Financial Institutions

In a coordinated effort, several Croatian government and financial institutions, including the Ministry of Finance, Tax Administration, Croatian National Bank (HNB), Economic Bank of Zagreb (PBZ), and Zagreb Stock Exchange (ZSE), were hit with Distributed Denial of Service (DDoS) attacks yesterday. The websites and online portals of these institutions are currently unavailable.

NoName057 Hacker Group Claims Responsibility

The NoName057 hacker group has claimed responsibility for the attack, which is a significant escalation in cybercrime activity in Croatia’s financial sector. The group, known for its pro-Russian sympathies, is believed to be behind a string of similar attacks on European and NATO countries in recent months.

University Hospital Centre Zagreb Under Cyber Attack

In a separate incident, the University Hospital Centre Zagreb (KBC Zagreb) has been under cyber attack since Wednesday night. The hospital’s information system has been shut down, with parts being gradually switched back online once deemed safe. Although all services are functioning normally, the processing of patients is slower than usual due to the inability to print out medical reports and staff having to write them by hand.

Patients’ Information Not Compromised

Preliminary findings indicate that patients’ information has not been leaked or exfiltrated. However, it’s unclear whether ransomware was deployed in the attack.

Consequences of Cyber Attacks

The cyber attacks on Croatia’s financial sector and hospital have raised concerns about the country’s vulnerability to cybercrime. Vlatko Košturjak, CTO at Croatian infosec outfit Diverto, notes that there has been a slight increase in DDoS attacks on Croatian infrastructure since 2021.

  • “DDoS remains a simple and cost-effective method for attackers to disrupt organizational operations,” he said.
  • The attacks also highlight the need for robust DDoS defenses, which require regular testing to ensure effectiveness.

Wake-Up Call for Organizations

The incident serves as a wake-up call for organizations in Croatia’s financial sector to prioritize cybersecurity measures. As of Friday morning, KBC Zagreb expects its information system to be back online and functioning normally. However, the nature of the attack has not yet been officially confirmed.

  • The investigation is ongoing, with authorities working to determine the extent of the damage and whether it is connected to the DDoS attacks on government and financial institutions.