Cyberattack on the Formentera Island Council: Update on the Impact on Local Security

El cyberattack on the Formentera Island Council, which occurred on January 19, 2026, has once again put local authorities and citizens of the island on alert. This incident, although previously reported, has required an update on the measures taken and the steps being taken to reinforce security and protect residents' sensitive data.

In this analysis, we explore what has occurred, the risks involved, and the lessons learned to avoid a similar security breach in the future.

‍

What is known about the cyberattack on the Formentera Island Council?

The cyberattack, which occurred on January 19, caused significant damage to the Council's digital systems, such as:

• Public service inquiries.
• Management of personal and administrative data.
• Access to contact information and citizen support.

Although the attack affected digital systems, physical services were not interrupted. However, customer service systems and administrative management experienced a significant impact.

The Council has taken steps to mitigate the impact of this incident and has initiated an investigative process to identify the full extent of the breach. Although not all the technical vectors of the attack have been publicly detailed, it is suspected that such incidents could be related to:

• DDoS attacks against web infrastructures.
• Commitment of technology providers.
• Exploitation of unpatched vulnerabilities.

‍

Why local governments remain a strategic objective

Public administrations are critical infrastructures that manage essential services for the population, making them a priority target for attackers. The main reasons include:

• Direct impact on citizens: The interruption of public services affects millions of people.
• Growing dependence on digital systems: Many administrations have integrated technology platforms to provide fast and efficient services.
• Diversity of interconnected services: Administrations manage a wide range of public services that rely on technological systems, increasing their attack surface.

This cyberattack highlights how a computer incident can go beyond the internal operations of administrations, directly affecting citizens and essential services.

‍

How do these attacks occur in public administrations

Cyber attacks on critical infrastructure are often caused by a combination of factors, such as:

1. Phishing aimed at employees: Attackers manage to infiltrate through social engineering techniques.
2. Lack of segmentation between IT and OT networks: The lack of separation between different digital environments increases the risk of spreading the attack.
3. Third-party dependency without security audits: External vendors can be a point of vulnerability if regular security audits are not carried out.
4. Absence of constant monitoring: The lack of 24/7 surveillance makes it difficult to detect an attack early.
5. Poor vulnerability management: Failure to patch systems or maintain old configurations exposes the organization to unnecessary risks.

An incident like this doesn't always involve data theft, but sometimes the temporary unavailability of a system can cause a significant economic impact.

‍

Key lessons for public administrations and other critical sectors

The cyberattack on the Formentera Island Council leaves valuable lessons for all public and private organizations:

1. Digital resilience is as important as physical resilience. Digital systems are just as critical as physical infrastructure.
2. Business continuity plans must include cyberattacks. It is necessary to consider cybersecurity scenarios within emergency plans.
3. Constant monitoring reduces detection time. Detecting the attack as soon as possible minimizes damage.
4. Crisis communication is essential. Transparency helps manage reputation during the incident.
5. Cybersecurity must be a strategic priority. It is not just a one-off project, but an ongoing process that must be addressed at a strategic level.

‍

Cybersecurity as a strategic priority

This cyberattack highlights the need for public administrations to treat cybersecurity not as an expense, but as a strategic investment. Organizations must integrate:

• Regular security audits.
• 24/7 SOC Services for constant monitoring.
• Ongoing vulnerability analysis to detect weaknesses before they are exploited.
• Simulations of attacks to assess the capacity to respond to an actual incident.
• Continuing training for employees to reduce human risks.

The objective is not to prevent attacks 100% (something unrealistic), but to minimize their impact and improve response capacity.

‍

How Apolo Cybersecurity Can Help

The recent cyberattack on the Formentera Island Council underlines that any organization, public or private, can be the target of a computer attack.

In Apolo Cybersecurity, we help public administrations and organizations to:

• Identify vulnerabilities before they are exploited.
• Implement advanced monitoring using SOC 24/7.
• Design incident response plans.
• Adapt to regulatory frameworks such as NIS2 and DORA to ensure compliance and security.

If your organization manages critical services or depends on digital platforms to operate, now is the time to assess your actual level of exposure.

Contact our Apolo Cybersecurity team to conduct a cybersecurity audit and strengthen your digital resilience before the next incident occurs.