The Hungarian government confirmed that the IT systems of Hungary’s defence procurement agency were infiltrated by foreign hackers but stated that no sensitive data compromising national security was accessed. Gergely Gulyas, Hungarian Prime Minister Viktor Orban’s chief of staff, revealed that a “hostile foreign, non-state hacker group” was behind the attack. The most sensitive information that could have been accessed was related to military procurement, but Gulyas reassured the public that nothing harmful to Hungary’s national security was disclosed. It remains unclear whether any compromised data may have implications for Hungary’s role in NATO.
The hack was conducted by a group known as INC Ransomware, who reportedly downloaded and encrypted all files from the Defence Procurement Agency’s servers. Local media shared that the hackers have posted numerous screenshots online showcasing details about Hungary’s military air and ground capabilities, along with procurement data and personal information of army personnel. To prevent the public release of this information, the hacker group demanded $5 million (€4.7 million). The increase in disruptive cyberattacks following Russia’s invasion of Ukraine in 2022 has raised concerns about ransomware attacks and those targeting public institutions. Juhan Lepassaar, the head of the European Union Agency for Cybersecurity, reported that many incidents were trialed in Ukraine before expanding to EU countries.
Hungary, located near Ukraine, has been working on modernizing its army since 2017 by purchasing equipment ranging from tanks to air defense systems. The country has also started developing its domestic defense industry. The hack on Hungary’s defence procurement agency raises concerns about potential risks to the country’s security. While the government assured that no sensitive data compromising national security was accessed, the incident highlights the vulnerability of IT systems to cyber threats. The demand for a large sum of money by the hacker group to prevent the release of leaked information underscores the growing threat of ransomware attacks on sensitive government institutions.
The EU’s cybersecurity official’s warning about the rise in disruptive cyberattacks post-Russia’s invasion of Ukraine highlights the urgent need for stronger cybersecurity measures. The breach of Hungary’s defence procurement agency points to the evolving tactics of cybercriminals targeting critical infrastructure and sensitive government data. The incident has underscored the importance of enhancing cybersecurity resilience and implementing proactive measures to prevent and mitigate cyber threats. The demand for a significant ransom to prevent the public disclosure of the hacked data reflects the financial motivations of cybercriminals and the potential impact of such attacks on national security and public trust.
Hungary’s efforts to bolster its military capabilities and develop a domestic defense industry signify the country’s commitment to enhancing its national security. However, the hack on the defence procurement agency serves as a reminder of the persistent threat posed by cyberattacks. As governments and organizations across the globe continue to face cybersecurity challenges, it is crucial for Hungary and other countries to prioritize cybersecurity measures to safeguard critical infrastructure, sensitive data, and national security interests. The incident underscores the need for enhanced coordination and collaboration at the international level to address the growing threats posed by cybercriminals and ensure a secure digital environment for all.
