Sanxenxo suffers ransomware attack: associates reveal ransom demands in Bitcoin and damages to services

According to sources close to the authorities in Sanxenxo, a ransomware attack has severely compromised the city’s digital infrastructure. The incident, which occurred on January 26, completely paralyzed municipal servers, preventing access to critical administrative files and leaving over 17,000 residents without essential services.

Details of the attack and ransom demands

The hackers behind the attack encrypted thousands of municipal files and demanded a ransom of $5,000 in Bitcoin as a condition to restore access. Close to the local administration confirmed that the main target was administrative management, blocking database systems and official documentation. The cybercriminal group exploited vulnerabilities in the municipal technological infrastructure, a pattern increasingly common in medium-sized cities across Europe.

Authorities’ response and rejection of payment

The Sanxenxo municipal government decided not to give in to the attackers’ demands. Instead, they reported the incident to the Spanish Civil Guard, initiating a formal investigation. Sources close to local management indicated that a recovery plan based on daily backups is being implemented to gradually restore system functionality.

The importance of not paying ransoms

Sanxenxo’s refusal to pay the ransom represents a crucial security policy in the fight against cybercrime. Experts warn that capitulating to these demands encourages criminals to continue their operations. By rejecting payment, the municipality not only protects its digital integrity but also helps reduce the funding of ransomware networks globally, an important step in defending critical infrastructure.