Ransomware Attack Targets Grand Palais and RMN Network Ahead of Paris Olympics
A ransomware attack struck the Réunion des Musées Nationaux (RMN), the network overseeing France’s Grand Palais and 33 other cultural institutions, including venues hosting Paris Olympic events. The breach, detected on Sunday, specifically impacted the RMN’s online shop (boutiquesdemusees.fr) but did not disrupt Olympic competitions at the Grand Palais (fencing and taekwondo) or the Château de Versailles (modern pentathlon and equestrian).
The Grand Palais-RMN, which reports to France’s Ministry of Culture, manages high-profile museums like the Louvre, Musée d’Orsay, and Musée Picasso, though none reported direct disruptions. The Musée d’Orsay confirmed its bookshop operates independently. While the RMN stated no data was confirmed stolen, Franceinfo radio reported attackers demanded an unspecified ransom within 48 hours, threatening to leak financial data. France’s ANSSI cybersecurity agency is assisting recovery efforts, and the Paris prosecutor’s office has launched an investigation via the Brigade for Combating Cybercrime.
The incident reflects a rising trend of cyber threats against arts and cultural institutions. Earlier this year, Gallery Systems, a U.S. museum software provider, suffered a December attack causing outages, while Christie’s auction house faced a RansomHub breach in May, exposing client data and sparking a class-action lawsuit. The RMN confirmed its 36 museum bookstores remain operational, with no impact on public access.
Source: https://news.artnet.com/art-world/french-museums-hit-by-ransomware-attack-2521544
GrandPalaisRmn cybersecurity rating report: https://www.rankiteo.com/company/grandpalaisrmn
"id": "GRA1775198050",
"linkid": "grandpalaisrmn",
"type": "Ransomware",
"date": "8/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'Arts and Culture',
'location': 'France',
'name': 'Réunion des Musées Nationaux (RMN)',
'type': 'Cultural institution network'},
{'industry': 'Arts and Culture',
'location': 'France',
'name': 'Grand Palais',
'type': 'Cultural venue'},
{'industry': 'Arts and Culture',
'location': 'France',
'name': 'Château de Versailles',
'type': 'Cultural venue'}],
'data_breach': {'data_exfiltration': 'Threatened',
'sensitivity_of_data': 'High (threatened to be leaked)',
'type_of_data_compromised': 'Financial data'},
'date_detected': 'Sunday',
'description': 'A ransomware attack struck the Réunion des Musées Nationaux '
'(RMN), the network overseeing France’s Grand Palais and 33 '
'other cultural institutions, including venues hosting Paris '
'Olympic events. The breach impacted the RMN’s online shop '
'(boutiquesdemusees.fr) but did not disrupt Olympic '
'competitions at the Grand Palais (fencing and taekwondo) or '
'the Château de Versailles (modern pentathlon and equestrian).',
'impact': {'data_compromised': 'Financial data (threatened to be leaked)',
'operational_impact': 'No disruption to Olympic competitions or '
'public access to museums',
'systems_affected': 'RMN’s online shop (boutiquesdemusees.fr)'},
'investigation_status': 'Ongoing',
'motivation': 'Financial gain',
'ransomware': {'data_exfiltration': 'Threatened',
'ransom_demanded': 'Unspecified (within 48 hours)'},
'references': [{'source': 'Franceinfo radio'}],
'regulatory_compliance': {'legal_actions': 'Investigation launched by Paris '
'prosecutor’s office'},
'response': {'law_enforcement_notified': 'Paris prosecutor’s office (Brigade '
'for Combating Cybercrime)',
'third_party_assistance': 'ANSSI cybersecurity agency'},
'title': 'Ransomware Attack Targets Grand Palais and RMN Network Ahead of '
'Paris Olympics',
'type': 'Ransomware'}