Liege, one of the biggest cities in Belgium, hit by Ryuk ransomware

Liege, one of the biggest cities in Belgium, hit by Ryuk ransomware

The Belgian city of Liege has been hit by a large cyberattack that disrupted the municipality’s IT network and online services, including public services and administrative police office.

According to the status page on the city’s official website, appointments for town halls, birth registration, wedding, and burial services have been canceled due to inaccessibility of certain services and programs.

“The City of Liège, surrounded by experts of international competence, analyzes the scale of this attack and its consequences, in particular in terms of duration on the partial unavailability of its IT system. It is doing everything to restore the situation as soon as possible,” officials said.

In response to the attack, IT staff shut down the network to curb the spread of the infection and instructed staff not to turn on computers.

While the official statement did not share information on the nature of the cyberattack, local media reported that the city’s computer systems were targeted by the Ryuk ransomware.

Currently, it is unclear how the attackers managed to compromise the municipality’s IT network or what ransom they demand. The investigators have yet to determine the extent of the cyberattack, it is also not clear whether the threat actors have stolen City’s data.

Back to the list

Latest Posts

Cyber Security Week in Review: July 4, 2025

Cyber Security Week in Review: July 4, 2025

In brief: Google patches Chrome 0Day, the US is on the hunt for North Korean IT workers, and more.
4 July 2025
AI chatbots fall for phishing scams

AI chatbots fall for phishing scams

The models provided the correct URL only 66% of the time; nearly 30% of responses pointed users to dead or suspended domains.
3 July 2025
Chinese hackers exploited Ivanti flaws in attacks against French government

Chinese hackers exploited Ivanti flaws in attacks against French government

ANSSI believes that the Houken campaign is operated by ‘UNC5174’, an entity believed to act as an initial access broker for China’s Ministry of State Security.
2 July 2025