Lithuania warns mass data leak was work of foreign country
303 Mins Read
Lithuanian authorities have stepped up cybersecurity measures following a major data breach involving more than 600,000 entries from national databases, amid suspicions that a foreign state may be behind the incident.
The Lithuanian general prosecutor’s office announced on Friday that the leaked information was mainly extracted from real estate and legal entity registers by exploiting login credentials belonging to institutions authorised to access the data. Officials described the breach as a serious security incident and confirmed that an investigation is underway.
In the wake of the leak, Adrijus Jusas, head of the State Enterprise Centre of Registers, resigned from his post on Monday. Authorities have since introduced additional cybersecurity safeguards, including blocking suspicious user accounts and tightening access procedures by requiring institutions to update their credentials.
While prosecutors have not officially identified any country as responsible, they stated that investigators suspect the involvement of a foreign state actor. The incident has fuelled concerns in Lithuania over ongoing hybrid threats targeting the Baltic region.
Opposition politician Laurynas Kasčiūnas claimed on social media that the cyber attack was believed to be linked to Russian intelligence operations, although he did not provide evidence to support the allegation. According to Kasčiūnas, the leaked data could potentially include the addresses and personal information of intelligence officers, military personnel, diplomats and politicians, raising fears that the information could be used for surveillance, intimidation or influence operations.
Lithuania, along with neighbouring Baltic states, has repeatedly warned about what it describes as Russia’s “hybrid warfare” tactics against Europe. These operations are said to include cyber attacks, sabotage, disinformation campaigns, vandalism and attempts to destabilise critical infrastructure and government systems without engaging in direct military confrontation.
The latest cyber incident comes at a time of heightened security tensions in the region. Lithuanian authorities have recently reported a growing number of drone sightings near the country’s borders, particularly close to Belarus. Last week, residents in parts of the capital Vilnius were advised to seek shelter following reports of drone activity near the frontier.
Speaking after the incident, Lithuanian Defence Minister Robertas Kaunas described such events as part of a “new reality” facing the Baltic states. He warned that similar incidents were likely to continue and stressed the need for governments to adapt to increasingly complex security threats.
Security analysts have increasingly pointed to the Baltic region as one of the most exposed areas in Europe to hybrid operations due to its geographical proximity to Russia and Belarus, as well as its strong political and military support for Ukraine since the start of Russia’s full-scale invasion in 2022.
European leaders are also paying closer attention to the situation. European Commission President Ursula von der Leyen is expected to travel to Vilnius for meetings with Baltic leaders focused on coordinating a response to the recent drone incursions and broader regional security concerns.
The data leak has renewed debate in Lithuania over the resilience of state digital infrastructure and the need for stronger protections against cyber espionage and foreign interference. Authorities say investigations into the source of the breach are ongoing.
