According to a government press release, on the afternoon of Friday 25 July 2025, Luxembourg's Prime Minister Luc Frieden convened the Crisis Unit (Cellule de crise) in response to the identification of the cause behind the major technical incident at POST on Wednesday 23 July 2025.
During the meeting, chaired by Luxembourg’s Minister for the Economy, SMEs, Energy and Tourism, Lex Delles, the Director-General of POST and his deputy confirmed that the incident stemmed from a targeted cyberattack involving an “exceptionally advanced and sophisticated level of technical execution”.
In its own press release, POST clarified that the attack did not breach its internal systems and no data was compromised or exfiltrated. POST said: “The malicious operation exploited a software vulnerability in a standardised component to trigger large-scale system failure and the widespread disruption of services.”
POST stated that its technical teams implemented countermeasures from 19:50 on Wednesday 23 July, and that these proved effective and continue to maintain the stability and security of services. They added that, as of now, neither the origin nor the perpetrator of the attack had been identified and that POST’s internal teams continue to analyse the incident in cooperation with the relevant authorities. POST added that a report is currently being prepared for the public prosecutor.
According to the government, the High Commission for National Protection (HCPN) is coordinating the detailed assessment of the incident at POST and its wider impact.
