Suspected APT28 Attack Cripples DFS Office Communications

The German air traffic control service, Deutsche Flugsicherung (DFS), fell victim to a cyberattack that crippled the company’s office communications. However, air traffic control operations remained unaffected. It is reported that the hacker group APT28 may be responsible for the attack.

A DFS spokesperson informed the media that the attack was detected last week, after which the company issued an internal notice regarding the compromise of its systems. Measures are currently being taken to safeguard against further threats. However, specific details about the compromised systems and the protective actions being implemented were not disclosed. At the same time, DFS emphasized that the incident did not impact the safety or management of air traffic.

Media reports suggest the possible involvement of APT28 in the attack, but DFS representatives have not commented on these claims. The German authorities have been notified of the incident, but the Ministry of Transport, under whose jurisdiction DFS falls, declined to comment, citing the need to obtain information directly from DFS. The Federal Office for the Protection of the Constitution confirmed the attack and has launched an investigation, but details regarding the potential perpetrators remain undisclosed.

The limited release of information in such cases is often due to the concern that premature disclosure could jeopardize the investigation. Furthermore, revealing details about the protective measures could inadvertently provide attackers with insights into vulnerabilities within the defense system.