DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Cyberattacks continue to interfere with vaccination efforts and municipal governments

Posted on July 8, 2021 by chum1ng0

Cyberattacks continue elsewhere as the two reports below show. One attack impacted the COVID-19 vaccination portal in the country of Georgia. An unrelated attack affected a municipality in Romania.

 Georgia

Like many countries, Georgia has been dealing with a significant increase in number of new COVID cases after previously lifting some restrictions.

On July 2, the country received one million doses of the Sinopharm and Sinovac vaccines from China. A reservation window was opened for people to register to get the vaccine, but on Saturday (July 3), the registration portal at booking.moh.gov.ge was hacked, disrupting the sign-up process for the day.

Ekhokavkaza reported (translation) that the Georgian Ministry of Internal Affairs launched an investigation into the cyberattack:

The Ministry of Internal Affairs opened a case under Articles 285 and 286 of the Criminal Code of Georgia – “illegal use of computer data and computer systems”, as well as “encroachment on computer data and computer systems.”

Georgia’s Ministry of Internal Affairs

In an update on July 4, Tass reported that the site was restored nearly a day after the attack. Georgia’s National Center for Disease Control & Public Health issued a notice on its Facebook page that the booking page had been restored and citizens were encouraged to sign up to get vaccinated.

Facebook Notice

 

Romania

The municipality of Oradea issued a statement on July 5 about an attack. A machine translation indicates that in the “Counter Room” (Pyramid) on the first floor of the municipal hall, no functions could be performed other than collecting taxes and duties.

While the municipality reassured the public that 100% of the data would be recovered from the ransomware attack by using backups, it was not clear how long that restoration would take.

“Until its complete restoration, the IDC document management system will not be operational,” the municipality writes, apologizing for the inconvenience.

Puterea reported that the city administrator, Mihai Jurca, described the attack this way (translation):

The attack started from a file inserted on the City Hall servers that infected the surrounding files. In such cases, the protocol requires disconnecting the system, neutralizing the infected files, checking the databases to see if there are other affected files. The network in the office with the public was stopped for security reasons.

On July 6, the city announced that all operations had been resumed in the morning and all data had been recovered.

Neither Georgia nor Oradea mentioned the specific type of malware used in the attacks on them or who the threat actors might be. The Oradea incident was specifically identified as a ransomware incident. The Georgia incident was not labeled as such but sounds like it may have been one.


Reporting by Chum1ng0 with contributions by Dissent; editing by Dissent

 

 

Category: Breach IncidentsMalwareNon-U.S.

Post navigation

← UK: Years in jail for Cambridgeshire computer hacker who blackmailed victims
Bug bounties: Here’s how much Microsoft paid out to security researchers last year →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Dublin ETB fined €125,000 for data protection breaches
  • From $5,000 to $800,000: Days Apart, OCR Security Settlements Show Puzzling Math
  • Liberty Township in Ohio has recovered its network after a ransomware attack
  • Marquette County Medical Care Facility discloses data breach
  • Industry Letter – June 23, 2025: Impact to Financial Sector of Ongoing Global Conflicts
  • MNGI Digestive Health settles class action lawsuit stemming from BlackCat attack
  • Four REvil ransomware members released after time served on carding charges
  • Why Dumping Sensitive Data on Network Shares is a Liability
  • A militarily degraded Iran may turn to asymmetrical warfare – raising risk of proxy and cyber attacks
  • Pro-Russian hackers disrupt Dutch government websites ahead of NATO summit

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • How Internet of Things devices affect your privacy – even when they’re not yours
  • Sky Views Personal Data as a Potential Weapon in IPTV Piracy War
  • Florida Used a Nationwide Surveillance Camera Network 250 Times To Aid in Immigration Arrests
  • Federal Court Strikes Down HIPAA Reproductive Health Care Privacy Rule
  • The Markup caught 4 more states sharing personal health data with Big Tech
  • Privacy in the Big Sky State: Montana’s Consumer Privacy Law Gets Amended
  • UK Passes Data Use and Access Regulation Bill

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.