The Play ransomware group has claimed responsibility for a cyber attack on the Belgian city of Antwerp. Digipolis, the company responsible for managing Antwerp's IT systems, became the victim of the attackers. As a result of the attack, the work of city IT services, e-mail and telephone communications was disrupted.
Local media reported that many of the city's apps had stopped working, and city councilwoman Alexandra d'Archambeau said on Twitter that her corporate email was unavailable.
The outages have been going on for quite some time, with city officials warning that almost all services are unavailable or are provided with significant delays.
It was initially unclear exactly who was behind the attack, until one of Emsisoft's analysts noticed that Play listed Antwerp as one of its victims on the site on the dark web. The site says that 557GB of data was stolen during the attack, including personal information, passports, identity cards, and financial documents.
Now the attackers are holding the data and waiting for a ransom, threatening to leak everything stolen to the darknet if they don’t receive the money in a week.