The news of a ransomware attack on the land registry shook not only Slovak media. The information available so far proves that cyber threats are not just a fancy action movie scenario, but a highly relevant issue. A topic that many companies and institutions continue to ignore. As cybersecurity expert Jiri Hradsky says: "A cyber attack will reveal who is prepared."
The Slovak land registry suffered a ransomware attack on 5 January 2025, but even three weeks after the incident, there is not much new information available, rather only speculation. According to information published on 9 January, the attack caused a complete inaccessibility of stored data, which means that the land registry was basically not working. Even the e-mail box of the Slovak Office of Geodesy, Cartography and Cadastre was affected. This had a major impact on the real estate market, which came to a standstill.. Without a functioning land registry, real estate transfers were impossible. And if they were done manually on paper? Considering the sheer volume of documents, data, and information involved, it would have likely resulted in chaos.
What is the situation now? The central information system of the land registry is still out of service. However, most local offices have resumed limited operations.The cyber attack ultimately led to the resignation of the chairman of the Slovak Office of Geodesy, Cartography and Cadastre. The origin of the attack is still under investigation.
Is cybersecurity your topic? We'll tell you where to start.
Ransomware - remember this word, because it’s nowon everyone's radar. It's malware that has one goal: to encrypt, publish or otherwise block access to data. And in return for unlocking or not disclosing it, attackers demand a ransom - usually a hefty one. According to a report by security firm Madiant, companies paid a total of $1,000,000,000 in similar ransomware ransoms in 2023. The sad truth is that even after paying the ransom, there is no guarantee attackers won't keep backups or make additional demands.
Ransomware attacks are becoming more widespread and most often start with phishing - for example, an email with an attachment that the victim opens or fills in their details, allowing attackers access to sensitive data. With the rise of AI, these attacks are becoming increasingly sophisticated and difficult to detect.
"That can't happen to us." Many of the business people we work with on cyber security believe they are not affected by such attacks. But the question today shouldn't be "if it will happen," but rather "when will it happen." Cybersecurity is no longer just about meeting legal obligations and having a "green stamp." It's a matter of survival.
Want to start addressing cyber security? Contact us.
There has been a lot of talk in recent months about the implementation of NIS 2. There are a lot of consultancy firms on the market trying to trade on fear and circulating lists of obligations that obliged entities will have to fulfil. This approach, often filled with exaggeration and misinterpretation, unfortunately discourages businesses from taking cybersecurity seriously.
The recent cyber attack on the Slovak land registry is serves as a wake-up call, highlighting why cybersecurity should be a priority. The forthcoming law on cyber security and its implementing decrees can provide clear guidance to businesses on what measures to take to prevent similar situations. Already in 2023, the NCIB issued recommendations on how to deal with ransomware attacks. Don't see this law as a necessary evil that you must comply with. See it as a useful guide to protect yourself from threats that can affect anyone.
Cybersecurity always starts within the company. If you're considering how to approach cybersecurity, the key is to start with your employees. There are plenty of useful educational materials on the NUKIB website that can help them.
We recommend, for example, the "Give Cyber" course from NUKIB, which is available free of charge for every employee. The third chapter focuses on social engineering and phishing attacks - one of most significant cybersecurity risks today.
And if you're just starting with cybersecurity need guidance on where to begin, or want to assess your company's current security stance, get in touch. We're experts in cyber security.