IT Services recently disclosed that a ransomware attack on an IT supplier may have compromised its data. Furthermore, it warns that it is now subject to DDoS attacks. This situation underscores the complex threats facing organizations and governments as they utilize third-party services to host data and publicly expose online services.

Ransomware Attack Exposes Data

Last Tuesday, IT Services revealed that it was affected by a ransomware attack on Xplain, a Swiss technology provider that supplies various government departments, administrative units, and even the country’s military force with software solutions. The Play ransomware gang breached the IT company on May 23rd, 2023, and claimed to have stolen various documents containing private and confidential data, as well as financial and taxation details. On June 1st, 2023, the Play ransomware group published the entire dump, presumably after failing to extort Xplain into paying a ransom.

Xplain on Play's extortion site
Xplain’s entry on the Play ransomware data leak site (Source)

The Swiss government says that while investigations on the contents and validity of the leaked data are still underway, it is likely that the attackers posted data belonging to the Federal Administration. “Clarifications are currently underway to determine the specific units and data concerned,” reads the press release published on the government portal. “Contrary to the initial findings and following recent in-depth clarifications, it has to be assumed that operational data could also be affected.”

How Did the Cyber Attack on ChatGPT Compare to the DDoS Attacks and Data Breach Threats in Switzerland?

A massive cyber attack compromises chatgpt’s user accounts. Comparatively, the impact on ChatGPT by the cyber attack stands on a different ground than that of DDoS attacks and data breach threats in Switzerland. While DDoS attacks aim to overwhelm systems and disrupt service availability, data breaches threaten privacy by exposing sensitive information. However, all these threats necessitate robust security measures to safeguard against potential breaches.

‘NoName’ DDoS

A second press release posted on the Swiss government portal today warns of access problems on various Federal Administration websites, as well as its online services. The reason for this outage is a DDoS (distributed denial of service) attack launched by NoName, a pro-Russian hacktivist group targeting NATO-aligned countries and entities in Europe, Ukraine, and North America since early 2022. “Several Federal Administration websites are/were inaccessible on Monday 12 June 2023, due to a DDoS attack on its systems,” reads the statement. “The Federal Administration’s specialists quickly noticed the attack and are taking measures to restore accessibility to the websites and applications as quickly as possible.”

According to the same press release, NoName attacked the parliament website last week when its members discussed whether the country abandoned its neutrality to send aid to Ukraine.

Leave a Reply

Your email address will not be published. Required fields are marked *