Hostile states were probably responsible for a massive data leak at Lithuania’s Centre of Registers (VIRC), President Gitanas Nauseda announced, BNS reported. He said that the theft of over 600,000 records from VIRC’s real estate register was a matter of national security. Nauseda slammed the government for not disclosing the data breach until one or two months after the incident occurred in March 2026. Opposition parties expressed similar criticism, BNS reported. Prime Minister Inga Ruginiene said that she had been informed about the data breach in early April 2026, but could not disclose the incident because it was being investigated by the Prosecutor General’s Office. She said that the government would not resign due to the incident.
Meanwhile, Lithuania’s National Cyber Security Centre (NKSC) recorded altogether 2,888 cyber incidents in 2025, which was 25% fewer than in 2024, BNS reported. The number of incidents classified as major ones amounted to 19. Cyber incidents involving organisations and legal entities almost doubled from 155 in 2024 to 280 in 2025, while incidents involving disruption or hacking attempts into state digital infrastructure totalled 267. Also, NKSC recorded more than 106,000 compromised login credentials and alerted 221 organisations about the data leaks. Furthermore, Lithuania’s State Data Protection Inspectorate (VDAI) received altogether 223 notifications about leaks of the personal data of around 713,000 people in 2025.