The Limited Times

Now you can see non-English news...

Ransomware attack: hackers publish customer data from Swedish security company


Among other things, Gunnebo develops control systems for access to office buildings and airports. Hackers stole thousands of customer data from the Swedish company, including plans for vaults in German banks.

Icon: enlarge

Plans of vaults under the files (symbol image)

Photo: Frank Rumpenhorst / dpa

In an attack on the Swedish security company Gunnebo, unknown persons gained access to around 38,000 files containing sensitive information.

In addition to banks, Gunnebo's international customers also include operators of nuclear power plants, hospitals and airports.

The perpetrators published some of the information on the Darknet, as three security experts from the Reuters news agency said.

The daily newspaper "Dagens Nyheter" (DN) first reported on the case.

The data included information about security measures in the Swedish parliament and about customers around the world.

The plans for vaults at at least two German banks are also said to have ended up in the hands of the hackers.

Among other things, Gunnebo develops control systems for access to office buildings and airports.

"It is very unfortunate what happened," said Gunnebo boss Stefan Syren in a phone call with Reuters.

His company has good security standards.

But these still have to be improved.

Gunnebo hired an external team for this.

"Mount Locker" is quite a new ransomware

According to current knowledge, the attack began on August 18th.

On September 25, there were first indications that the intercepted data was running on a public server, Gunnebo said.

There was no contact with the attackers.

There was a similar attack on Thyssenkrupp's System Engineering subsidiary in North America in August.

A spokeswoman said it was repelled shortly after it was discovered.

According to security experts, the attack in Sweden was part of an operation with the recently discovered ransomware "Mount Locker".

Various companies were the target.

During the attacks, access to internal data was blocked or encrypted.

A ransom was requested for activation, which should usually be paid in a crypto currency such as Bitcoin.

Icon: The mirror

amm / Reuters

Source: spiegel

All tech articles on 2020-10-27

You may like

News/Politics 2020-10-07T18:23:50.508Z

Trends 24h


© Communities 2019 - Privacy