Lithuania’s interior ministry failed to address cybersecurity flaws identified in 2022

Lithuania’s interior ministry has not resolved critical cybersecurity vulnerabilities in its IT systems first flagged by the National Cyber Security Centre (NKSC) in 2022, Defence Minister Robertas Kaunas said on Friday, LRT reports.

Kaunas, speaking after a visit to the NKSC, stated that the ministry had not taken the centre’s recommendations seriously enough. “The NKSC identified flaws in the interior ministry’s systems back in 2022, but these issues remain unresolved as of 2026,” he said. “In the near future, we plan to assign oversight officers to institutions to ensure both organisational and technical recommendations are implemented.”

His remarks follow media reports that around 50 accounts in the ministry’s systems may have been compromised. Prime Minister Inga Ruginienė has raised questions about the accountability of Viktorija Rūkštelė, head of the IT and Communications Department, while Interior Minister Vladislav Kondratovičius insisted no data breaches had occurred in the personal document issuance system (ADIS) or the migration information system (MIGRIS).

In May, the Prosecutor General’s Office launched an investigation into unauthorised access attempts and the theft of over 600,000 real estate registry records, including personal identification numbers, from the Centre of Registers.