Denmark Blames Russia for "Destructive" Cyber-Attacks

Key Points:

• Russia has been identified as responsible for recent destructive cyber-attacks against Denmark, including a significant attack on a water utility and multiple DDoS attacks targeting Danish websites.
• The attacks have been attributed to pro-Russian hacktivist groups Z-Pentest and NoName057(16), with implications for critical infrastructure security in Denmark and broader geopolitical tensions.
• Organizations are advised to enhance their defenses against DDoS attacks and monitor for signs of malicious activity linked to these groups, particularly in the context of upcoming elections.

Technical Details: The DDIS reported that the destructive attack on the water utility occurred in 2024, while the DDoS attacks were noted during the lead-up to the 2025 municipal elections. The advisory highlights that these groups are utilized by the Russian state as part of hybrid warfare tactics.

MITRE ATT&CK Techniques:

• T1071.001 - Application Layer Protocol: Web Protocols (Command and Control)
• T1498 - Network Denial of Service (Impact)

IOCs Mentioned: None mentioned