Romania Faces Surge in Cyberattacks Amid 12th Anniversary of Cybercrime Office

Severity: High (Score: 72.5)

Sources: www.coe.int, www.digi24.ro, Jurist

Summary

On April 21, 2026, the Council of Europe’s Cybercrime Programme Office (C-PROC) in Bucharest celebrated its 12th anniversary with a meeting addressing rising cybercrime challenges. Romania is currently experiencing a significant increase in Distributed Denial of Service (DDoS) attacks targeting public institutions and companies, particularly linked to the ongoing Middle East conflict. The Romanian National Cybersecurity Directorate reported that these attacks aim to disrupt access and undermine public trust, with pro-Kremlin group Noname057(16) identified as a key actor. Recent DDoS attacks on Romanian Foreign Ministry sites caused temporary slowdowns but did not result in data breaches. Additionally, the European Commission suffered major hacks in early 2026, exposing sensitive personal data. The EU Council has responded with sanctions against entities involved in these cyberattacks. Overall, the situation highlights a broader EU cyber crisis, with increasing attacks across multiple sectors. Key Points: • Romania is experiencing a surge in DDoS attacks targeting public institutions. • Pro-Kremlin group Noname057(16) is among the most active attackers. • The European Commission has faced significant data breaches in early 2026.

Key Entities

• Emennet Pasargad (company)
• European Commission (company)
• Data Breach (attack_type)
• DDoS (attack_type)
• Phishing (attack_type)
• Iran (country)
• Moldova (country)
• Romania (country)
• digi24.ro (domain)
• econsulat.ro (domain)
• europa.eu (domain)
• eviza.mae.ro (domain)
• T1499 - Endpoint Denial of Service (mitre_attack)
• T1566 - Phishing (mitre_attack)
• T1567 - Exfiltration Over Web Service (mitre_attack)