Several municipalities in Denmark have experienced significant disruptions to their online services today, with multiple websites taken offline due to a series of cyberattacks. Gentofte Municipality has confirmed that its website was targeted by a Distributed Denial of Service (DDoS) attack, which overwhelmed the site with up to 400,000 queries in a short span of time, forcing it to go offline for several hours.
This incident, which affected other municipalities in the capital region, is being attributed to the pro-Russian hacker group, NoName057(16). The group claimed responsibility for the attacks via a post on social media platform X (formerly Twitter).
Minister of Public Security Provides Reassurance
Torsten Schack Pedersen, Denmark’s Minister of Public Security and Emergency Preparedness, sought to reassure the public, emphasizing that while the attacks are disruptive, they do not pose a threat to Denmark’s critical infrastructure or the safety of its citizens.
“These types of cyberattacks are part of the broader threat landscape we face today. It is crucial to clarify that they are not harmful to Danes or to our essential systems,” Minister Pedersen stated. “While some municipal websites may experience downtime or slower service, these attacks do not affect the safety or security of the Danish population.”
Pedersen acknowledged the challenges posed by the attacks but noted that authorities are prepared to address such incidents. “We must remain vigilant, especially with the upcoming municipal and regional council elections. Unfortunately, we may see more of these attacks in the near future,” he added.
Ongoing Cyber Threats and Response
Despite Gentofte Municipality’s website being restored, Mikkel Solgaard Bojsen-Møller, Director of Finance and Digitalization at Gentofte, confirmed that attacks are still ongoing, although they have not yet led to further outages. “We are monitoring the situation closely to assess whether the attacks will persist or if we have successfully mitigated the immediate threat,” Bojsen-Møller said.
He also acknowledged the challenges of preventing such attacks, especially when targeting well-known, high-profile municipal websites. “While we’ve done everything in our power to prepare, the scale and persistence of these attacks make it difficult to completely rule out operational disruptions,” he explained. “This is a learning process, and we will continue to evaluate and strengthen our defences moving forward.”
Other municipalities, including Rødovre, Rudersdal, and Ishøj, also reported experiencing similar technical issues with their websites. However, all affected sites are now operational again.
Intelligence Warnings and Preparedness
The Danish Security and Intelligence Service (PET) and the Danish Defence Intelligence Service (FE) had issued a joint warning less than a week ago, highlighting the risk of cyberattacks—especially from Russian-affiliated hacker groups—during the municipal and regional elections.
Despite these warnings, the cyberattacks demonstrate the challenges that municipalities face in protecting their digital infrastructure against increasingly sophisticated threats. While Denmark has robust cyber defence mechanisms in place, the nature of these attacks underscores the need for continuous improvement and heightened vigilance.
Moving Forward: Strengthening Cybersecurity
While the recent DDoS attacks have caused temporary disruptions, the overall impact on citizens has been minimal. The government and local municipalities are focused on strengthening their cybersecurity protocols to ensure that essential services are not compromised during future attacks.
The recent cyberattacks serve as a stark reminder of the growing threat of digital warfare and the importance of cybersecurity resilience. As Denmark prepares for the upcoming elections, authorities will continue to monitor the situation and implement additional security measures to safeguard municipal services and protect the integrity of the election process.
The Rise of Cyber Threats in Denmark
The recent uptick in cyberattacks on Danish municipal websites is part of a broader trend seen across Europe, where state-sponsored hacking groups are increasingly targeting local governments and critical infrastructure. In this case, the involvement of NoName057(16), a pro-Russian hacker group, signals a growing alignment of cyberattacks with geopolitical tensions, particularly in light of the ongoing war in Ukraine.
While these attacks have been disruptive, they highlight the evolving nature of cyber threats, which now include tactics designed to create public confusion and undermine trust in government systems. Municipalities must not only contend with traditional cybersecurity threats but also with the psychological warfare that often accompanies politically motivated cyberattacks.
In response, Denmark’s government and municipalities must continue to bolster their cybersecurity strategies by investing in more robust defences, enhancing employee training, and improving coordination between local and national authorities. Only through a comprehensive, multi-layered approach can Denmark hope to safeguard its digital infrastructure in the face of increasingly sophisticated cyber threats.