Widespread Disruption of Municipal Websites Follows Claims by Pro-Russian Hacking Group
On December 31st, 2024, a coordinated series of cyberattacks targeted the internet sites of several major French cities, causing widespread disruption and prompting an investigation by Paris prosecutors.
The attacks, claimed by a pro-Russian hacking group known as NoName, appear to be a form of digital protest against France’s support for Ukraine. The incident highlights the increasing vulnerability of municipal infrastructure to sophisticated cyberattacks and the potential for politically motivated digital disruptions.
The Scale and Impact of the Cyber Attacks on French Internet Sites
Initially, the websites of Marseille and Tarbes, along with the site for the Haute-Garonne department, were reported down. However, the hacking group, NoName, boasted on X (formerly Twitter) of a far broader attack, claiming responsibility for disrupting access to the websites of Nantes, Bordeaux, Poitiers, Pau, Nîmes, Nice, Angers, Le Havre, and Montpellier, as well as the department of Les Landes, French Polynesia, and New Caledonia.
While NoName’s claims were extensive, many of the targeted websites were operational by the end of the day. The Paris prosecutor’s office confirmed that a total of 23 sites were targeted in this wave of French Internet Sites Cyber Attacks.
The mayor of Nice, Christian Estrosi, personally confirmed on X that his city’s website was among those affected. Marseille’s town hall explained to AFP that their servers had been subjected to attacks, necessitating the activation of protective mechanisms that temporarily rendered their websites inaccessible. However, the cities of Pau and Angers, and the Landes department, reported no noticeable incidents.
Technical Details of the Cyberattacks and the Perpetrators
The attacks appear to have utilized Distributed Denial of Service (DDoS) attacks, a common tactic employed by NoName. DDoS attacks flood targeted websites with an overwhelming volume of automated requests, effectively rendering them inoperable. Crucially, these attacks typically do not involve data theft; the primary goal seems to be disruption and the creation of a climate of digital insecurity.
Benoit Grunemwald, a cybersecurity expert at ESET, offered insight into the attackers’ motives, stating that the objective appears to be primarily propagandistic, aiming to “create an impression of a climate of digital insecurity.” This aligns with NoName’s known history of attacks and their outspoken support for Russian viewpoints. The group’s actions suggest a deliberate attempt to leverage cyberattacks as a tool to express political dissent and potentially destabilize perceived adversaries.
Investigation and Response to the French Internet Sites Cyber Attacks
The Paris prosecutor’s office has launched a formal investigation into the attacks, underscoring the seriousness with which French authorities view these incidents. While the immediate impact was primarily disruption to public websites, th potential for more damaging attacks remains a concern.
The ongoing investigation will likely shed further light on the technical details of the attacks and the full extent of the group’s capabilities. The French Internet Sites Cyber Attacks serve as a case study for the growing challenges governments face in defending against state-sponsored or politically motivated cyber warfare.
