General Prosecutor’s Office: Foreign involvement suspected in record data breach

Massive Data Leak Exposes 600,000 Lithuanian Records in Suspected State-Backed Cyberattack

Lithuanian authorities are investigating a major data breach that compromised over 600,000 entries from national registers, including real estate and legal entity records. The leak, detected by the General Prosecutor’s Office, was executed using login credentials of authorized institutions, raising concerns about insider access or credential theft.

Adrijus Jusas, head of the state-run Centre of Registers, resigned following the incident. In response, authorities have tightened cybersecurity measures, blocking suspicious accounts and mandating credential updates to prevent further unauthorized access.

While officials have not named the suspected foreign actor, speculation points to Russia, given Lithuania’s status as a frequent target of Moscow’s hybrid warfare tactics including sabotage, disinformation, and cyber operations. Opposition politician Laurynas Kasčiūnas suggested the breach may be a Russian intelligence operation, though no evidence was provided. He warned that sensitive data, such as addresses of intelligence officers, military personnel, and diplomats, could have been exposed, posing risks of espionage or coercion.

The incident underscores Lithuania’s vulnerability amid heightened geopolitical tensions, with authorities treating the breach as a potential state-sponsored attack. Investigations are ongoing.

Source: https://jamaica-gleaner.com/article/world-news/20260527/foreign-involvement-suspected-record-data-breach

General Motors cybersecurity rating report: https://www.rankiteo.com/company/general-motors

"id": "GEN1779899842",
"linkid": "general-motors",
"type": "Cyber Attack",
"date": "5/2026",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of geographical region"

{'affected_entities': [{'customers_affected': '600,000 records (individuals '
                                              'and entities)',
                        'industry': 'Public Sector',
                        'location': 'Lithuania',
                        'name': 'Centre of Registers (Lithuania)',
                        'type': 'Government Agency'}],
 'attack_vector': 'Credential Theft/Insider Access',
 'data_breach': {'number_of_records_exposed': '600,000',
                 'personally_identifiable_information': 'Yes (addresses, '
                                                        'potentially other '
                                                        'PII)',
                 'sensitivity_of_data': 'High (potential exposure of addresses '
                                        'of intelligence officers, military '
                                        'personnel, and diplomats)',
                 'type_of_data_compromised': ['Real estate records',
                                              'Legal entity records']},
 'description': 'Lithuanian authorities are investigating a major data breach '
                'that compromised over 600,000 entries from national '
                'registers, including real estate and legal entity records. '
                'The leak was executed using login credentials of authorized '
                'institutions, raising concerns about insider access or '
                'credential theft. The incident is suspected to be a '
                'state-sponsored attack, potentially linked to Russia.',
 'impact': {'brand_reputation_impact': 'Resignation of Centre of Registers '
                                       'head, reputational damage to '
                                       'Lithuanian authorities',
            'data_compromised': '600,000 records',
            'identity_theft_risk': 'High (exposure of sensitive personal data)',
            'operational_impact': 'Tightened cybersecurity measures, blocked '
                                  'suspicious accounts, mandated credential '
                                  'updates',
            'systems_affected': 'National registers (real estate, legal '
                                'entities)'},
 'initial_access_broker': {'entry_point': 'Authorized institution login '
                                          'credentials',
                           'high_value_targets': ['Intelligence officers',
                                                  'Military personnel',
                                                  'Diplomats']},
 'investigation_status': 'Ongoing',
 'motivation': 'Espionage/Intelligence Gathering',
 'post_incident_analysis': {'corrective_actions': 'Tightened cybersecurity '
                                                  'measures, blocked '
                                                  'suspicious accounts, '
                                                  'mandated credential updates',
                            'root_causes': 'Credential theft/insider access, '
                                           'potential state-sponsored cyber '
                                           'operation'},
 'references': [{'source': 'General Prosecutor’s Office of Lithuania'}],
 'response': {'containment_measures': 'Blocked suspicious accounts, mandated '
                                      'credential updates',
              'law_enforcement_notified': 'General Prosecutor’s Office',
              'remediation_measures': 'Tightened cybersecurity measures'},
 'threat_actor': 'Suspected State-Backed Actor (Russia)',
 'title': 'Massive Data Leak Exposes 600,000 Lithuanian Records in Suspected '
          'State-Backed Cyberattack',
 'type': 'Data Breach'}