Curaçao Tax Authority Ransomware Attack Disrupts Key Services

The Curaçao tax authority ransomware attack has disrupted critical public services across the island for over a week. After the incident on July 24th, 2025, officials now expect systems to be fully operational again by Monday, August 4th—pending any technical issues.

Disruption Across Government Services

The attack forced multiple tax authority functions offline, including customer service, the call center, and the Department of Motor Vehicles. As a result, residents faced long delays and were unable to access routine services.

In a public statement, the agency confirmed that internal systems are expected to be restored by today, though the recovery depends on whether technical complications arise during the final restart phase.

Unknown Ransomware Group Behind the Attack

Authorities have not released details about how the ransomware infiltrated systems, what data may have been compromised, or which group is responsible. This lack of transparency leaves unanswered questions about the scale and impact of the attack.

Other Caribbean Institutions Also Affected

The ransomware campaign wasn’t limited to Curaçao. According to Dutch news outlet NOS, a virus was also found in the IT systems of the Court of Justice. This caused court delays and forced security teams to take systems offline for safety. Most hearings have since resumed, though system restoration is ongoing.

Meanwhile, several Members of Parliament in Aruba had their official email accounts compromised, raising further alarms.

Regional Authorities Issue Warnings

In light of these incidents, cybersecurity officials in St. Maarten urged organizations across the Caribbean to take ransomware threats seriously. Judianne Labega-Hoeve, Interim Director of the Bureau Telecommunications and Post St. Maarten (BTP), emphasized the growing risks:

“Strengthening cyber defenses is no longer optional—it is essential to ensure business continuity and safeguard critical data and systems.”

Conclusion

The Curaçao tax authority ransomware incident serves as another reminder of the rising cyber threats targeting public institutions. While services in Curaçao are expected to resume today, the broader wave of regional attacks signals the urgent need for stronger cybersecurity across all sectors.