Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Government

Swiss Fear Government Data Stolen in Cyberattack

Switzerland said government operational data might have been stolen in a ransomware attack on a technology firm that provides software for several departments.

Switzerland said Thursday that government operational data might have been stolen in a cyberattack on the technology firm that provides software for several departments.

“Xplain, a Swiss provider of government software, has been the victim of a ransomware attack. After the stolen data had been encrypted and the company blackmailed, the attackers posted some of the stolen data on the darknet,” the government said in a statement.

“Contrary to the initial findings and following recent in-depth clarifications… it appears that operational data of the federal administration could also be affected.

“In-depth analyses are still ongoing.”

The Swiss army and the customs department are among the clients of Xplain, which supplies software to authorities specialising in homeland security.

The government said it did not believe that the Xplain systems have direct access to the federal administration systems.

Advertisement. Scroll to continue reading.

Xplain accused a ransomware group called Play of being behind the attack.

“We have not made any contact with the Play group and we will not pay a ransom,” Xplain’s director Andreas Loewinger told AFP on Saturday.

Xplain has notified Switzerland’s National Cybersecurity Centre and the Bern police.

As in other countries, cyberattacks targeting companies, governments and even universities are on the increase in Switzerland.

Recently, two media outlets, CH Media and NZZ, were targeted by Play.

Related: Ransomware Group Used MOVEit Exploit to Steal Data From Dozens of Organizations

Related: SaaS Ransomware Attack Hit Sharepoint Online Without Using a Compromised Endpoint

Related: Pharmaceutical Giant Eisai Takes Systems Offline Following Ransomware Attack

Written By

AFP 2023

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing for the latest cybersecurity threats, trends, and expert insights.

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this live webinar as we break down why email-layer defenses alone can't keep pace with the modern phishing ecosystem, how agentic AI is changing the capacity equation for security teams, and more.

Register

This year's summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments. Interact with leading solution providers and other end users facing similar challenges in securing a variety of cloud deployments.

Register

People on the Move

Tracey Mustacchio has joined Everfox as Chief Marketing Officer.

Mark Carter has been appointed Chief Information Security Officer at Socure.

Spektrum Labs has named Mark Cravotta Chief Operating Officer.

More People On The Move

Expert Insights

Four decades of incident response experience suggest that exploits are often the symptom, not the root cause, of today’s cybersecurity failures.

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.