Event 529

approved csv-import Updated 2025-11-25T13:05:31.557743Z

Edit Previous Next

Status: approved Confidence: Low Category: Cyber Country: Latvia Country: Unknown Attack Type: Cyberattack Source: csv-import URL: https://eng.lsm.lv/article/society/defense/20.08.2024-cyber-attacks-on-public-sector-websites-in-latvia-tuesday.a565748/?utm_source=lsm&utm_medium=article-bottom&utm_campaign=article 🔗

🕐 Event Time: 2024-08-20T12:00:00Z

➕ Created: 2025-11-22T22:47:55.855257+00:00

✏️ Updated: 2025-11-25T13:05:31.557743Z

Summary

Headline: Cyber attacks on public sector websites in Latvia Tuesday

Short Summary: Coordinated cyberattacks, including DDoS incidents, targeted Latvian public sector websites on August 20, 2024, causing widespread disruptions.

Description and Notes

Multiple public sector websites in Latvia, including the unified state platform and Cabinet of Ministers' website, experienced slow operation and periodic inaccessibility due to intensive cyberattacks on August 20, 2024. The attacks included DDoS incidents, with attribution to pro-Russian hacktivist groups suspected. Authorities continue to monitor the situation and assess potential impacts.

Notes: Cyberattacks on public sector in ??Latvia

Evidence

Media

"Due to intensive cyber attacks, the websites of the unified state platform periodically experience malfunctions - slow operation or inaccessibility of the sites, the Cabinet of Ministers told LETA on ..."
"A number of websites of state institutions, including the Cabinet of Ministers' website, were now working or were partially working. The disruption was also observed on Tuesday."
"the information technology security incident prevention authority Cert.lv told LETA that since August 19, intense and tailored denial-of-service or DDoS attacks have been observed nationwide"
"Latvian State Radio and Television Center (LVRTC) shows that there are indications that attackers are profiling the performance of websites and adjusting the attack parameters to target certain functi..."
"the main events that potentially motivated DDoS attacks are support for pro-Ukrainian hacktivist groups aiming to generally inflict panic and undermine trust in state institutions"
"it is likely that Latvia, Lithuania, Estonia, the Nordic region, and Poland will continue being the long-term targets of Russian cyber operations."

Screenshot

Screenshot capture

View →

Screenshot Count: 1

Location

Countries: Latvia Unknown

Location: Latvia

Processed Payload

{
  "attack_type": "Cyberattack",
  "border_violation_countries": [
    "LV",
    "Air"
  ],
  "category": "Cyber",
  "confidence": "Low",
  "confidence_rationale": "Direct official statements from Latvian Cabinet of Ministers, technical cyber incident details from CERT.lv and LVRTC, and contextual attribution to pro-Russian actors support high confidence.",
  "countries": [
    "Latvia",
    "Unknown"
  ],
  "country": "Latvia",
  "defense_prep": {},
  "description": "Multiple public sector websites in Latvia, including the unified state platform and Cabinet of Ministers' website, experienced slow operation and periodic inaccessibility due to intensive cyberattacks on August 20, 2024. The attacks included DDoS incidents, with attribution to pro-Russian hacktivist groups suspected. Authorities continue to monitor the situation and assess potential impacts.",
  "event_time_utc": "2024-08-20T12:00:00Z",
  "evidence": [
    "Latvia's Cabinet of Ministers acknowledged website outages and disruption due to cyberattacks on August 20, 2024.",
    "CERT.lv reported intense nationwide DDoS attacks since August 19.",
    "LVRTC indicated attackers adjusted methods to target specific functionalities."
  ],
  "evidence_quotes": [
    "Due to intensive cyber attacks, the websites of the unified state platform periodically experience malfunctions - slow operation or inaccessibility of the sites, the Cabinet of Ministers told LETA on August 20 afternoon.",
    "A number of websites of state institutions, including the Cabinet of Ministers' website, were now working or were partially working. The disruption was also observed on Tuesday.",
    "the information technology security incident prevention authority Cert.lv told LETA that since August 19, intense and tailored denial-of-service or DDoS attacks have been observed nationwide",
    "Latvian State Radio and Television Center (LVRTC) shows that there are indications that attackers are profiling the performance of websites and adjusting the attack parameters to target certain functionalities.",
    "the main events that potentially motivated DDoS attacks are support for pro-Ukrainian hacktivist groups aiming to generally inflict panic and undermine trust in state institutions",
    "it is likely that Latvia, Lithuania, Estonia, the Nordic region, and Poland will continue being the long-term targets of Russian cyber operations."
  ],
  "extra": {
    "category_raw": "Cyberattack",
    "extra": {
      "extra": {
        "extra": {
          "evidence": [
            "Latvia's Cabinet of Ministers acknowledged website outages and disruption due to cyberattacks on August 20, 2024.",
            "CERT.lv reported intense nationwide DDoS attacks since August 19.",
            "LVRTC indicated attackers adjusted methods to target specific functionalities."
          ]
        }
      }
    }
  },
  "follow_up_by_country": [],
  "headline": "Cyber attacks on public sector websites in Latvia Tuesday",
  "location_text": "Latvia",
  "media_assets": [
    {
      "description": "Screenshot capture",
      "type": "screenshot",
      "url": "/media/event_529_1763929913_580f9231.jpg"
    }
  ],
  "notes": "Cyberattacks on public sector in ??Latvia",
  "schema_version": "v1",
  "screenshot_count": 1,
  "sources": [
    "https://eng.lsm.lv/article/society/defense/20.08.2024-cyber-attacks-on-public-sector-websites-in-latvia-tuesday.a565748/?utm_source=lsm&utm_medium=article-bottom&utm_campaign=article"
  ],
  "summary_short": "Coordinated cyberattacks, including DDoS incidents, targeted Latvian public sector websites on August 20, 2024, causing widespread disruptions.",
  "url": "https://eng.lsm.lv/article/society/defense/20.08.2024-cyber-attacks-on-public-sector-websites-in-latvia-tuesday.a565748/?utm_source=lsm&utm_medium=article-bottom&utm_campaign=article"
}

Raw Payload

{
  "5th Column of Russians Inside (which countries)": "",
  "Attack Type": "Cyberattack",
  "Borders Including Sea, Air,  Violation or Sabotage (which countries)": "LV Air",
  "Continuous? (e.g. Jammers)": "",
  "Country (FI;EE;LV;LT;PL;BSR;Air)\nSeparated by Semicolon": "LV;Air",
  "Date": "20-Aug-24",
  "Defense Prep Event (FI-EE-LV-LT-PL)": "",
  "Defense Prep Event (FI-EE-LV-LT-PL) REF LINK": "",
  "Follow-Up Link?  (FI,EE,LV,LT,PL, BSR, Air)": "",
  "Follow-Up NOTES": "",
  "Follow-Up incl. Investigation, Prosecution?  (FI,EE,LV,LT,PL, BSR, Air)": "",
  "Latitude, Longitude (WGS84, Decimal Degrees)": "",
  "NOTES": "Cyberattacks on public sector in ??Latvia",
  "Political Disruptions w/ Laws to Favor Kremlin (which countries)": "",
  "Russian-Belarus Terrorist Event (FI-EE-LV-LT-PL)": "Cyberattacks on public sector in ??Latvia",
  "Russian-Belarus Terrorist Event (FI-EE-LV-LT-PL) REF LINK": "https://eng.lsm.lv/article/society/defense/20.08.2024-cyber-attacks-on-public-sector-websites-in-latvia-tuesday.a565748/?utm_source=lsm&utm_medium=article-bottom&utm_campaign=article",
  "Screen Snapshot": "",
  "Screen Snapshots": "",
  "Type Dropdown": "",
  "Where?\n(Air, Land, Sea)": ""
}

Payload History

Loading history...

Actor:
Action:
Created:

Re-enrichment

Re-enrich

Enrichment-only: keeps existing processed data, screenshots, and media. Re-runs only the enrichment step (AI extraction) without refetching the source or regenerating screenshots. Use this if enrichment failed or you need updated AI-extracted data.

Destructive Actions

Delete Event

⚠️ Warning: This permanently removes the event and its history. This action cannot be undone.