Alleged ransomware attack disrupted operations at Slovenia’s Pop TV station

Pierluigi Paganini February 14, 2022

Last week, a cyber-attack has disrupted the operations of Pop TV, the Slovenian most popular TV channel.

The attack, which likely was a ransomware attack, impacted the computer network of the TV channel and caused the cancellation of the evening edition of 24UR daily news show. Slovenian news agency Zurnal24 reported that the POP TV hit from threat actors from abroad that attempted to extort money to the company to restore its systems.

“Due to the limitations faced by the intrusion into the computer system, you can watch us online today and on television in a truncated form, the evening show 24UR is canceled.” reads a statement published by the company. “We do everything in our power to provide you, as we have for 27 years, with credible and relevant information.”

The day after the company published an update on the attack clarifying that its programs were on air and broadcast, while websites were available to a limited extent. The company was not able to broadcast new programs to its channels, including live sporting matches.

“All uploaded content on video at the request of VOYO is available to users, but unfortunately we will not be able to broadcast live broadcasts and sports matches and upload new and missed content to the video library until further notice.” states the company. “All our teams continue to work to resolve the situation.”

Slovenia’s Computer Emergency Response Team, SI-CERT, helped the TV station to restore operations and investigate the incident.

“On Tuesday, February 8, 2022, the media house Pro Plus doo announced on its website that it was the victim of a hacker attack that curtailed their services . We can confirm that the National Cyber ​​Security Response Center SI-CERT is cooperating with Pro Plus in dealing with the incident, but other details cannot be revealed at this time.” reads the advisory published by SI-CERT.

Over the past few years, other attacks hit TV stations worldwide, most recent ones are Portugal’s SIC (January 2021), the Cox Media Group (June 2021), and the Sinclair Broadcast Group (October 2021).

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, PoP TV)

[adrotate banner=”5″]

[adrotate banner=”13″]

you might also like

leave a comment