A significant cyberattack hit Italy’s Foreign Ministry and major airports on December 28, 2024, temporarily disrupting several official websites. The pro-Russian hacker group Noname057(16) claimed responsibility for the incident, which they described as a response to “Russophobia.” According to the hackers, the cyberattack was a “well-deserved cyber response” to the political climate surrounding Russia. The websites of Milan’s Linate and Malpensa airports, along with the Foreign Ministry’s site, were affected, raising immediate concerns about the broader impact on critical national infrastructure.
The attack was identified as a Distributed Denial of Service (DDoS) attack, where the hackers flooded the affected networks with an overwhelming amount of traffic. This caused temporary outages and made it impossible for users to access the sites. Despite the disruptions, airport operations were not significantly impacted. Both Linate and Malpensa airports continued their regular operations, and flights were not delayed. Additionally, the airports’ mobile apps functioned as usual, providing passengers with real-time updates and preventing further operational disruptions.
Italy’s cybersecurity agency responded quickly to the attack, mitigating its effects in under two hours. The agency worked in collaboration with the affected institutions to restore services and protect vital information from further damage. The quick response showcased the country’s cybersecurity resilience in handling such attacks, which are becoming more frequent in the current geopolitical climate. While the impact was contained, the attack underscored the vulnerabilities in national cybersecurity infrastructure that could have far-reaching consequences in a more intense assault.
This incident highlights the increasing role of cyberattacks in political and geopolitical conflicts. While no significant operational disruptions were reported, the breach serves as a reminder of the ongoing cybersecurity threats faced by governments and critical infrastructure. As tensions continue to rise globally, cybersecurity agencies must remain vigilant and prepared for potential cyber responses, particularly from groups motivated by political or ideological objectives. The swift mitigation of this attack was a positive outcome, but the risk of future incidents remains ever-present.
