Lithuania’s cybersecurity chief sees no coordinated attacks, calls incidents isolated

Lithuania’s National Cyber Security Centre (NKSC) does not see evidence of coordinated cyberattacks targeting state institutions, with recent breaches treated as separate incidents, the centre’s director said.

Antanas Aleknavičius, head of the NKSC, told a press conference that the data breach at the State Accreditation Service for Healthcare Activities and the earlier incident at the Centre of Registers are not linked. “We consider these to be separate, individual incidents,” he said, citing differences in the methods used.

The healthcare accreditation service reported a cyber incident late Tuesday, with Health Minister Marija Jakubauskienė confirming that more than 62,000 records—including professional and contact details of medical specialists, data on 156 institution administrators, training competencies, and technical metadata—had been compromised.

Aleknavičius explained that the two cases involved distinct vulnerabilities and exploitation techniques. While the Centre of Registers breach involved third-party exploitation, the healthcare service incident was tied to supplier-related issues, he said.

The NKSC is assessing the scale of the vulnerabilities and their potential impact on other systems. Preliminary reports have been received, but final details, including the exact duration of the breaches, will be clarified in later analyses, Aleknavičius added.

He reiterated that there is currently no indication of a coordinated cyber campaign against Lithuanian institutions.

LRT.lt first reported the statements.