Caritas does not negotiate with cybercriminals

The cyber attack was not able to slow down the work of the Caritas Association in Munich and the top of Bavaria in its work with people.

A week after the cyber attack on the central IT infrastructure of the Caritas of the Diocese of Munich and Freising, social work continues with and with people in services and facilities with great commitment and commitment. The Director of Caritas and the Chairman of the Board of Directors, Prof. Dr. Dr. Hermann Solfrank: “Our mission” nah. We’ve been able to do justice to being ‘closest’ to the usual high quality folks, even if – and that shouldn’t be a secret – cyberattack has kept us busy last week and will continue to do so.”

Caritas, external specialists and investigative authorities are currently working on resolving the cyber attack. An international group of cybercriminals has claimed responsibility for the attack and has been blamed for a large number of attacks on large businesses and organizations in the recent past. “Apparently, cybercriminals don’t stop at anyone anymore. Now, unfortunately, we’ve hit it too,” Sollfrank laments. Before encrypting the data on Caritas servers, the attackers managed to steal the data. Then, Caritas was offered the option of decrypting the data in exchange for a ransom payment or publishing the data with the aim of creating uncertainty and damaging its reputation. “This attack also targets the relationship of trust between us and the people we support and the people who support us,” Solfrank continued. To do this, extortionists resort to the usual repertoire of threats and intimidation used in cybercrime.

“The people behind the attack know exactly what they are doing, how they should do it and what they are trying to achieve. This is a classic case of extortion. Data for money, cybercriminals account that simple,” Sollfrank reports, emphasizing: “In the legal vacuum of organized crime, There is no legal entitlement. There is no obligation or guarantee that cybercriminals will now or in the future deliberately publish sensitive data in order to create fear and shame, to disturb the people, community of employees, customers, residents and sponsors of Caritas in Munich and Upper Bavaria as much as possible. This is not Fiction, this is what our specialists and investigators have observed with a variety of other major cyber attacks.”

So the Caritas board of directors in Munich and Upper Bavaria decided not to respond to the demands of cybercriminals, but to focus on building an alternative IT infrastructure. Thanks to the current and extensive data backups, this became possible in due course. “IT security will also play a central role in new infrastructure, and we will not believe in the supposed security of avoiding such a cyber attack in the next few years,” explains Hermann Solfrank. Data protection and data security standards have been, and will continue to be, a fundamental pillar of our day-to-day work for us, on which our residents, customers, and employees can rely. “We will continue to proactively inform the public about the situation. Current information can be found on our website at:

Most importantly, all affected also handle their private data securely and remain especially vigilant after a cyber attack if there is unusual activity in email inboxes, social media or online banking. “At this point, we would like to extend our heartfelt thanks to our staff and the many volunteers who are in daily contact with our residents, customers and relatives and who answer questions and have to bear the consequences of a cyber attack in their daily work,” asserts Hermann Solfrank on behalf of the entire Board of Directors: “This is an exceptional situation that achieves Our employees have extraordinary things in it.” (beb)

Leave a Comment