The victim, a crucial hub of maritime activity in Portugal's capital and one of Europe's most accessed ports, experienced a cyberattack on Christmas Day. This port plays a strategic role, with over 3,500 vessel calls and managing more than 13.4 million tons of cargo annually.
According to sources, the port was victim of a ransomware attack that day. The Tactics, Techniques, and Procedures (TTPs) of the attack seem to correspond with activities reputed of the LockBit ransomware group.
The attack did not affect the port's operations but led to the shutdown of its website and internal systems. The attacking group has threatened to release a vast array of the port’s confidential data unless their ransom demands are met, claiming to possess sensitive information such as financial reports, audits, contracts, and personal data.