Overview

• City staff detected anomalous sprinkler activity on September 16 in Tramo VI near the Torres de Serranos and quickly isolated the affected equipment within the 14-segment system.
• Municipal investigators report the access used Russian IP addresses, with no impact on other city systems or the remaining irrigation zones.
• Automatic watering in the affected segment remains deactivated as a precaution, and technicians are operating the sprinklers manually.
• The decade-old irrigation control system had a security flaw exploited in the incident, and the agency is seeking an external cybersecurity firm to reinforce protections.
• Opposition group Compromís says a previously approved audit has been stalled since 2023 and argues the breach was avoidable, while any link to broader European cyber incidents remains speculative.