From the actions of cutting off access and the diagnostic checks that have been carried out, the following data emerges, as according to the data that has been collected recently, more than 400 attacks were recorded on the information systems of the Land Registry SA in the current week. On the plus side, although a malicious user attempted to break into the Database, it failed.
It is worth noting that a publication referring to “gaining access to the Database” does not correspond to reality, which is confirmed both by the contractor’s Security Operation Center and by the competent government agencies managing the attack, including the Cyber Security Directorate of GEETHA. Although it is true that one of the backups was breached, nevertheless the attempt to export data (data exfiltration) to a server abroad failed. It is noted that the Land Registry produces daily copies of the database.
At the same time, the Agency’s employees’ terminals were hacked, from which a total volume of 1.2 GB of data was extracted so far from the total volume of 200 TB available to the Land Registry, i.e. 0.00059%. The type of files that have been stolen so far do not concern personal information of citizens, but standard administrative documents of services that do not affect the proper functioning of the Land Registry. No ransomware has been detected so far, and the actions taken drastically reduce this risk.
All Land Registry employees were asked to change passwords and implement (those who had not already done so) 2FA (2 factor authentication) protocol. Stopped all VPN access to block malicious users. With a great deal of effort by all involved, digital services were up and running uninterrupted so that transactions are not affected.
The last recorded attack took place unsuccessfully at 5am on 7/19/2024 and was prevented. Everyone’s effort continues and a new update will follow.
Source: www.digitallife.gr
