The ASAC cloud service has suffered a cyberattack that has put municipalities such as Oviedo and institutions such as the Court of Accounts out of play
A cyber attack on the cloud hosting company ASAC has left websites and systems in several cities in Spain without connection, including Fuenalabrada in the Madrid Community, Oviedo in the Principality of Asturias or Vinaròs in the Valencia Community.
However, despite the extent of the attack and the large number of public services affected throughout the national territory, there is no evidence that there has been a theft or leak of data during it.
ASAC, an Asturian cloud services company, has reported this weekend a computer attack with ransomware (software that hijacks computer programs and equipment), which has left several Spanish entities without operation.
“Despite having different security measures and certifications (ISO 27001, 27017, 27017, 20000, 22301 and National Security Scheme in HIGH Category), cybercriminals have managed to encrypt part of our systems. However, we must not forget that security management is a process that not only focuses on prevention, but on early detection, recovery and response. In this sense, our security systems have made it possible to guarantee the total confidentiality of all information, avoiding any loss ( RPO = 0), containing the attack and working effectively in response and recovery, “the ANAC company said in a statement.
Among those affected, there are also the Spanish Foundation for Science and Technology (FECYT), the Court of Accounts or the National Security Council (CSN).
The ransomware attack occurred in the early hours of May 8 and is yet another of the numerous attacks that have affected Spain in recent weeks.
The chosen virus is called Zeppelin, which is different from the one detected on the SEPE platforms or on Phone House. This ransomware was first discovered in 2019 and is typically distributed via emails. If a user downloads the program attached to these emails, Zeppelin has the ability to quickly take control of the computer and, if it is connected to a network, distribute itself over it to affect others.
FUENLABRADA CITY COUNCIL
The Madrid municipality of Fuenlabrada has been one of the most affected by this cyber attack, causing its website to be temporarily suspended until the incident is resolved.
It is a decision taken by the municipalities in collaboration with the State security forces seeking to return to normality “as soon as possible.”
Likewise, from the consistory they point out that “the rapid detection of the incident together with the security systems have guaranteed the confidentiality of the guarded data”, and remind that some services are available.
ZALLA CITY COUNCIL
In this municipality of Vizcaya, the cyberattack has had a limited scope, causing incidents in the part of its website that is used to carry out municipal procedures as well as in its platform to reserve sports spaces.
VINARÓS CITY COUNCIL
The Virnarós City Council has also been indirectly affected by the attack. The council would have “turned off” some parts of its municipal website and associated domains in order to carry out the necessary security checks.
THE EMT OF MADRID AND VALENCIA
Others affected by this cyber attack have been the municipal transport companies of the Madrid and Valencia City Councils, affecting their web pages, servers and applications for mobile phones.