Multiple Swiss cities and institutions face coordinated DDoS attacks, with websites in Schaffhausen, Geneva, and Sierre paralyzed during World Economic Forum.
"Informatik Schaffhausen, working with an external provider, managed to completely fend off the attack"
In a significant escalation of cyber hostilities, Russian hackers launched a coordinated series of DDoS (Distributed Denial-of-Service) attacks against multiple Swiss cities during the World Economic Forum meeting in Davos. The Russian hacker group NoName claimed responsibility for these sophisticated attacks that targeted key administrative websites in Schaffhausen, Geneva, and Sierre. These attacks represent a concerning pattern of cyber aggression against Swiss infrastructure, particularly during high-profile international events.
The attacks resulted in the temporary paralysis of multiple municipal websites and services. Canton Schaffhausen's official website was knocked offline, along with the local energy supplier SH Power. The cities of Geneva and Sierre experienced extended disruptions to their online services. While the attacks caused significant inconvenience, authorities confirmed that no data was compromised during these incidents. The cantonal banks of Zurich and Vaud were also targeted in the preceding days, indicating a broader pattern of attacks against Swiss financial institutions.
The timing of these cyber attacks coincided strategically with the World Economic Forum in Davos, suggesting a deliberate attempt to disrupt Switzerland during this high-profile international gathering. The National Cyber Security Centre had anticipated such attacks during the WEF, highlighting the predictable nature of these politically motivated cyber operations. This pattern mirrors previous incidents where Russian hackers targeted Swiss infrastructure during significant international events, including the Ukraine conference at Bürgenstock in June 2024.
Swiss authorities demonstrated efficient response capabilities, with Informatik Schaffhausen successfully repelling the attack through collaboration with external security providers. By noon, several affected services were restored, showcasing the resilience of Swiss cyber infrastructure. The administration's core operations remained unaffected, indicating effective segregation of critical systems. The National Cyber Security Centre coordinated the response efforts, implementing predetermined contingency plans developed based on previous attack patterns.
These attacks represent a continuation of cyber hostilities against Swiss infrastructure, following similar incidents during the Ukraine conference and previous attacks on federal government websites. The persistent targeting of Swiss institutions during international events suggests a pattern of using cyber attacks as a tool for political pressure. This evolving threat landscape necessitates continued investment in cyber defense capabilities and international cooperation to protect critical infrastructure during high-profile events.