According to clarifications provided by ARME, the incident “was due to a 'malware' cyber attack of the 'lockbit ransomware' type, known as 'encryption virus'”.
Although the definition of 'ransomware' consists of blocking a computer system with a ransom demand to regain access to information, ARME stated that it cannot be "inferred" from its clarifications that there was a ransom in the case of CV Telecom.
When asked by Lusa for more details, the regulatory entity said that the case “is under investigation by the competent authorities”.
The October 19 attack on CV Telecom paralyzed television, telephone (landline and mobile), customer service and text messaging services, some of which only fully recovered after a few days.
Four days later, at a press conference, the operator announced that it had adopted more than 10 measures to reinforce security.
CV Telecom classified the attack as a “criminal act” and the regulatory authority said it had received, “within 48 hours, as required by law”, “detailed” information about the incident.