Lithuania’s institutions have been hit with cyber attacks days after Moscow promised to retaliate over Kaliningrad transit sanctions. In a statement on Monday, the Defence Ministry said an "intensive" DDoS attack was targetting "the secure national data network, other Lithuanian public authorities and private companies".
Read more: Lithuania and Kaliningrad – updates
Killnet, the Russia-affiliated hacker group that has claimed responsibility for the attack on Lithuania, has been posting on its Telegram account information about planned and executed Distributed Denial of Service (DDoS) attacks.
In a video message, the group says it has launched the attacks in retaliation for the restrictions imposed by Lithuania earlier this month on the transit of sanctioned goods to Russia's Kaliningrad exclave.
After EU sanctions against Russia took effect, Lithuania restricted the transit of steel and ferrous metals. Russia has accused Lithuania and the EU of violating international agreements, threatening a "non-diplomatic" response.
The State Tax Inspectorate (VMI) on Monday put its IT systems on hold for security concerns after recording "an unusually high number of logins".
"Please be advised that VMI customers' data is secure," the tax authority said. "The VMI website, the My VMI system and telephone services are currently down."
Evelina Gudzinskaitė, director of the Migration Department, confirmed to BNS on Monday that information system disruptions were causing delays in the issuing of passports and residence permits in Lithuania.
Tadas Vasiliauskas, spokesman for Lietuvos Oro Uostai (Lithuanian Airports, LOU), confirmed to BNS that the state-owned company's websites had experienced some disruptions.
"We have some disruptions, but everything is functioning. Our systems are functioning," he said.
The BSS business management system implementation and maintenance services provider BSS IT said its website had been down for the last few hours.
"We know from the public space that there is a risk and we are under attack. Our website, where we publish information, has been attacked," said Nerijus Jankauskas, the company's CEO.
In its Telegram account, the Killnet group identified websites of businesses providing document management system services as its targets.
The Lithuanian National Cyber Security Centre last week warned about an increase in DDoS incidents. State-owned Lietuvos Geležinkeliai (Lithuanian Railways) then said it had been hit with cyber-attacks.
Prime Minister Ingrida Šimonytė noted on Monday that such attacks had been recurring since Russia's invasion of Ukraine in early February.
"This is not something new that we have not experienced since the very beginning of the invasion, because there have been attacks during these four months and before," she told reporters at the Seimas.
Last week, Lithuanian Defence Minister Arvydas Anušauskas did not rule out that the attacks could be linked to these disputes.
As of Monday afternoon, the websites of the Lithuanian Foreign Ministry and the State Tax Inspectorate (VMI) remain inaccessible.
Later the same day, the Defence Ministry said "the major DDoS attacks have been contained and all secure network services are available".
Newsletter
Every Friday morning.
