Ransomware Attack Disrupts Digital Operations at Spain's Port of Vigo

The Port of Vigo, a major maritime hub in Spain's Galicia region, reports a ransomware attack on March 24, 2026. The incident targeted the port's digital infrastructure, affecting servers used to manage cargo traffic and logistics coordination. Port officials detected the breach early in the morning local time and shut down the external network connections to contain the spread of the malware.

The ransomware encrypted critical information systems, effectively locking digital management tools and the port's public-facing website. The compromised data includes:

• Active files synchronized to cloud storage during the attack
• Internal logistics and cargo management databases
• Administrative documents and server-hosted records
• Public website metadata and availability services

The number of affected individuals is not disclosed. Port President Carlos Botana stated that digital systems will remain offline until security teams provide absolute guarantees that the network is clean. The organization is working with cybersecurity specialists to rebuild the affected infrastructure and verify the integrity of backup data.