Cyber security incidents in Lithuania decrease in number but grow in complexity, expert says
Translated from Lithuanian, summarized and contextualized by DistantNews.
At a glance
- Cyber security incidents in Lithuania are decreasing in number but increasing in complexity, according to an expert.
- While state efforts have strengthened cooperation and training, current geopolitical situations demand heightened vigilance and continuous cyber hygiene.
- The expert emphasizes learning from incidents like the data leak from the Center of Registers, advocating for improved information sharing and regular drills over creating new institutions.
Cyber security incidents in Lithuania are becoming less frequent but more sophisticated, an expert told ELTA. "If before there was a lot of noise, now there may be fewer incidents, but their importance is greater โ they are more targeted. The number of dangerous incidents is decreasing, but their complexity is increasing," said Z. Antucheviฤ.
If before there was a lot of noise, now there may be fewer incidents, but their importance is greater โ they are more targeted. The number of dangerous incidents is decreasing, but their complexity is increasing.
Antucheviฤ noted that the state has made significant progress in cyber security in recent years, enhancing institutional cooperation, implementing EU directives, and focusing on employee training and technological solutions. However, she stressed that in the current geopolitical climate, these measures are insufficient. "If we could previously afford to overlook some things, we no longer have that luxury. Cyber security hygiene must be implemented and constantly monitored. Criminals are not sleeping," she warned.
The expert highlighted that many modern attacks begin with social engineering, aiming to steal employee login credentials or trick them into malicious actions. Therefore, technological solutions alone are not enough; institutions and businesses must continuously train employees to recognize threats and report them immediately. "The most important thing is not which institution is responsible, but that there is information sharing and joint work. Systems need to be tested, real drills conducted, and we need to learn from each other," Antucheviฤ explained.
If we could previously afford to overlook some things, we no longer have that luxury. Cyber security hygiene must be implemented and constantly monitored. Criminals are not sleeping.
Regarding the data leak from the Center of Registers, Antucheviฤ stated that while each incident is damaging, the focus should be on learning lessons rather than finding blame. "The essential thing is to learn from what happened, not to look for who was to blame. It's an ecosystem โ institutions must review processes, share more information, and cooperate," she said. She suggested Lithuania could adopt practices from Estonia and Finland, which regularly organize state-level drills following national cyber attacks.
The essential thing is to learn from what happened, not to look for who was to blame. It's an ecosystem โ institutions must review processes, share more information, and cooperate.
"Sometimes such an incident is needed to shake things up from stagnation. If it helps us become more resilient in the future, then at least we have learned an important lesson from it," the expert concluded. The General Prosecutor's Office is investigating the incident, which may have involved the theft of over 600,000 real estate records, affecting approximately half a million residents and causing at least 111,000 in damages.
The most important thing is not which institution is responsible, but that there is information sharing and joint work. Systems need to be tested, real drills conducted, and we need to learn from each other.
Originally published by Delfi in Lithuanian. Translated, summarized, and contextualized by our editorial team with added local perspective. Read our editorial standards.