Redazione RHC : 18 October 2025 11:58
The Romanian penitentiary system has found itself at the center of a major digital scandal: inmates in Târgu Jiu hacked the PNA’s internal platform and, for several months, managed data on prison sentences, fund transfers, and prison conditions undetected. This is the first documented case of inmates gaining access to the secure system used to administer all of the country’s penitentiary institutions.
The incident began in July, when a convicted cybercriminal was temporarily admitted to the Dej prison hospital. There, he memorized the login and password of an employee with administrative rights. Upon returning to his facility, he used these credentials to log in to terminals connected to the internal network. Having gained full access to the IMSweb system, the inmate logged in almost daily, for a total of over 300 hours.
According to the prison staff union, a group of inmates used stolen credentials to alter prison sentences, transfer funds between accounts, register unauthorized visits, and even interfere with prison conditions. At least 15 people benefited from the main perpetrator’s actions. One of them managed to spend approximately 10,000 Romanian lei ($2,300) using fake funds to purchase goods online.
A finance department employee drew attention to the anomalies when she noticed that some inmates’ account balances were not decreasing after purchases. This triggered an internal investigation, which uncovered widespread breaches. In addition to altering personal data, the inmates gained access to photos and security-related documents. Furthermore, they planned to copy the entire system and sell it on the black market.
PA officials confirmed the attack and stated that they promptly reported it to the relevant authorities. However, the administration maintains that the incident was isolated. PA Director Geo Bogdan Burcu acknowledged that the incident was caused by negligence on the part of staff, who allowed prisoners access to terminals and keyboards. He also noted that disciplinary measures would be taken against several staff members following the incident.
In the wake of this situation, other allegations against Burcu have emerged, including harassment and abuse of power. Although management denies all the allegations, they only increase tensions.
This raises questions about the security of the IMSweb platform itself, implemented in 2023 with EU funding. According to the union, the implementation was rushed to avoid losing funding, without adequate procedures. The system is currently being audited by the relevant cybersecurity agency , and the PA’s internal audit is looking for vulnerabilities.
Experts warn that such cyberattacks can have serious consequences, ranging from uncontrolled reductions in sentences to the leak of information that compromises national security.
The Târgu Jiu incident has become an alarming sign of the vulnerability of prison digital infrastructure and the need for urgent cybersecurity reforms.
Redazione