Switzerland Reports Possible Theft of Government Operational Data in Cyberattack
The Swiss government reported that a recent cyberattack on Xplain, a technology firm that provides software for several departments, may have led to the theft of government operational data. Xplain supplies software to several authorities dealing with homeland security, including the Swiss army and customs department. The government initially reported that only the provider’s data was stolen, but further investigation revealed a possible breach of operational data of the federal administration.
Details of the Attack
The government reported that Xplain was the victim of a ransomware attack, and after encryption of the stolen data and blackmail, the attackers posted some of the stolen data on the darknet. Although investigations are ongoing, the Swiss government stated that it did not believe that the Xplain systems have direct access to the federal administration systems. Xplain identified the ransomware group responsible for the attack as Play but did not contact them or pay the ransom.
Rising Cyber Attacks in Switzerland
The recent cyber attack on Xplain follows a rise in cyberattacks targeting companies, governments, and universities in Switzerland. Previously, Play targeted two media outlets, CH Media, and NZZ. As expected, these attacks had to be reported to Switzerland’s National Cybersecurity Centre and the Bern police. While there have been other cases of ransomware attacks in Switzerland, the possible theft of government operational data in this attack is a concerning development.
The Need for Improved Cybersecurity Measures
This cyberattack on Xplain highlights the need for governments to improve their cybersecurity measures against the growing threat of ransomware attacks. Government agencies must implement proper backup systems to ensure they can recover stolen data without engaging with hackers. Moreover, the Swiss government must adopt strong cybersecurity measures to protect all its systems, including those under third-party providers like Xplain.
Editorial: Protecting Sensitive Government Data
Indeed, as governments become increasingly dependent on information and communication technology, the need for adequate cybersecurity measures becomes even more significant. The potential theft of sensitive government data in this attack is a clear indication that governments should improve their cybersecurity measures, even when working with external providers. This should include a review of their outsourcing policies regarding technological platforms and software. Governments should carefully vet every relevant third-party provider that comes their way.
Conclusion
The emergence of ransomware as a significant cybersecurity threat to governments, even in countries with advanced digital capabilities such as Switzerland, is a form of cyber attack that must be seen through the lens of national security. Governments must take proactive measures to protect all their systems. That includes investing resources in designing and continually reviewing the security infrastructure, staff training, and adhering to best practices in cybersecurity.
<< photo by Mikhail Nilov >>
You might want to read !
- “Fortinet’s Response: Fixing the Critical FortiGate SSL VPN Vulnerability”
- “Beware of Bogus Rewards Scheme: Over 1,000 Fake Cryptocurrency Sites Trap Users”
- RCE Vulnerability in Fortinet FortiGate Firewalls Requires Urgent Patching
- Connecting the Dots: Microsoft Traces MOVEit Attack to Cl0p as British Airways, BBC Fall
- “PostalFurious” Campaign: UAE Citizens Receive SMS Attacks Aimed at Data Theft
- The Threat is Real: ‘Hot Pixels’ Attack Steals Data Through CPU Readings
- “Honda’s E-Commerce Platform Exposes Dealers’ Data to Risky Hackers”
