On August 5, Le Parisien reported that a ransomware attack has targeted IT systems used by approximately 40 French museums, including the prestigious Grand Palais. The attack was first detected on the night of August 3-4 when the IT director at the Grand Palais observed unusual activity on the museum’s network. Upon investigation, it was discovered that the ransomware was aimed at systems responsible for centralizing financial data for the affected museums.
The Grand Palais swiftly notified the French cybersecurity agency (ANSSI), which is responsible for overseeing cybersecurity measures for the upcoming Olympic Games. France’s Anti-Cybercrime Brigade (BL2C), a specialized unit within the French national police dedicated to combating cybercrime, has launched a thorough investigation into the incident. According to Le Parisien, the attackers have encrypted parts of the museums’ systems and are demanding a ransom in cryptocurrency. They have also threatened to release sensitive data if their demands are not met within 48 hours.
While the response from the affected museums has not been publicly detailed, ANSSI has confirmed that the attack does not impact the information systems involved in managing the Olympic and Paralympic Games. This confirmation is crucial as the Grand Palais is currently hosting several events related to the Olympics. Initial reports suggested that the Louvre might also be a target, but the museum has since denied any involvement or impact from the attack.
The ongoing investigation aims to determine the full extent of the damage and to track down the perpetrators. The incident highlights the growing threat of ransomware attacks against cultural and financial institutions and underscores the need for robust cybersecurity measures to protect sensitive data.
Reference:
