A recent cyberattack on the Belgium city of Antwerp was claimed by the Play Ransomware operation.
The city of Antwerp’s IT, email, and phone services were disrupted last week when the company that manages them, Digipolis, was hit with a ransomware attack.
Local media reported that many of the city’s Windows applications were no longer available, and that email was not.
Continue watching after the ad Visit Advertiser website.
The councilor member from Antwerp sent out a twit.
The city warns that almost all services are unavailable or significantly delayed, including job applications, use of libraries and new agreements with the city.
Play claims that it has an attack.
Local media reported that the city had been attacked, but it was not clear what the attack was about.
Over the weekend, an Emsisoft threat analyst noticed that Antwerp was one of the victims of the Play Ransomware operation.
According to this entry on the data leak site, personal information, passports, IDs, and financial documents were all stolen during the attack.
The Play data leak site had an entry from Antwerp.
BleepingComputer is the source of this.
The data from the city has yet to be leaked, with the threat actors indicating they will publish the data in a week unless a ransom is paid.
When victims began describing their attacks in the BleepingComputer forums, Play ransomware was launched in June of 2022.
The Judiciary of Crdoba in Argentina was the target of the most significant attack by the gang.
Since then, the operation has grown, with a steady stream of victims around the world.