On December 20, 2023, a pro-Russian hacking group known as Noname057 took responsibility for a significant cyberattack that disrupted package deliveries at France's national postal service, La Poste, just days before Christmas. This cyber incident prompted an investigation led by France's intelligence agency, the DGSI, as confirmed by the Paris prosecutor's office.

The cyberattack, categorized as a distributed denial of service (DDoS) attack, occurred on December 18, targeting the central computer systems of La Poste. As a result, vital services were severely impacted, rendering postal workers unable to track package deliveries and disrupting online payment processes through the company’s banking division. La Poste, which handles around 2.6 billion packages annual and employs over 200,000 individuals, faced a critical blow during one of the busiest periods of the year.

Noname057, the group behind this cyber assault, has a history of similar activities, particularly in Europe. Notably, they have been implicated in cyberattacks related to sensitive events, including a NATO summit in the Netherlands and attacks targeting French government websites. Earlier in 2023, Noname057 was also involved in a large-scale European police operation aimed at combating such cybercrime.

This incident reflects ongoing concerns shared by France and various European allies of Ukraine regarding what they describe as “hybrid warfare” orchestrated by Russia. It is suggested that this campaign seeks to sow discord within Western nations and weaken their resolve to support Ukraine amid the ongoing conflict. Reports indicate that over 145 incidents, including cyberattacks, disinformation, and violent acts, have been tracked, which are increasingly straining law enforcement resources across Europe.

The impact of the cyberattack on La Poste highlights the vulnerabilities in critical infrastructure, especially during peak operational periods. As the investigation unfolds under the scrutiny of French intelligence, the ramifications of this attack go beyond immediate disruptions, prompting broader discussions on cybersecurity defenses and measures against state-sponsored cyber threats in an interconnected global environment.