Icon: enlarge
Plans of vaults under the files (symbol image)
Photo: Frank Rumpenhorst / dpa
In an attack on the Swedish security company Gunnebo, unknown persons gained access to around 38,000 files containing sensitive information.
In addition to banks, Gunnebo's international customers also include operators of nuclear power plants, hospitals and airports.
The perpetrators published some of the information on the Darknet, as three security experts from the Reuters news agency said.
The daily newspaper "Dagens Nyheter" (DN) first reported on the case.
The data included information about security measures in the Swedish parliament and about customers around the world.
The plans for vaults at at least two German banks are also said to have ended up in the hands of the hackers.
Among other things, Gunnebo develops control systems for access to office buildings and airports.
"It is very unfortunate what happened," said Gunnebo boss Stefan Syren in a phone call with Reuters.
His company has good security standards.
But these still have to be improved.
Gunnebo hired an external team for this.
"Mount Locker" is quite a new ransomware
According to current knowledge, the attack began on August 18th.
On September 25, there were first indications that the intercepted data was running on a public server, Gunnebo said.
There was no contact with the attackers.
There was a similar attack on Thyssenkrupp's System Engineering subsidiary in North America in August.
A spokeswoman said it was repelled shortly after it was discovered.
According to security experts, the attack in Sweden was part of an operation with the recently discovered ransomware "Mount Locker".
Various companies were the target.
During the attacks, access to internal data was blocked or encrypted.
A ransom was requested for activation, which should usually be paid in a crypto currency such as Bitcoin.
Icon: The mirror
amm / Reuters