The extent of the cyber attack, which occurred over the weekend, is unclear. So far, it is known that, among others, Region Gotland, Region Halland, Kalmar municipality, Varber municipality, Umeå municipality, Luleå municipality, Kiruna municipality, Mönsterås municipality, Karlstad municipality, and Skellefteå municipality are affected.
"On Saturday, August 23, it was detected that parts of Miljödata's IT environment had been exposed to a cyber attack. The attack has been reported to the police," writes Miljödata's CEO Erik Hallén in an email to TT.
According to the police, the company has been subjected to an extortion attempt, reports several media outlets.
They have gained access to Miljödata's data environment and are demanding 1.5 bitcoins, says Helena Renberg at the police to BLT.
One bitcoin is estimated to be worth approximately one million Swedish kronor.
"Unavailability"
Erik Hallén further states that around 200 municipalities and regions are affected by "unavailability".
"We are working very intensively together with external experts to investigate what has happened, what and who has been affected, and to restore system functionality."
The system handles, among other things, labor law cases, rehabilitation cases, medical certificates, as well as reporting and handling of work-related injuries and incidents. Therefore, sensitive personal data about employees, former employees, and students may have been leaked.
"Important measures have also been taken to ensure that this has not been able to spread to the municipality's other systems," writes Skellefteå municipality in a press release.
Crisis group activated
Skellefteå municipality has set up a crisis group and an incident report is being prepared to be sent to the Swedish Authority for Privacy Protection (IMY). Kalmar and Karlstad municipalities are also on their way to doing the same. Region Gotland announces that they are in "continuous contact with the supplier" to investigate the extent of the attack. Other affected parties give similar messages.
"Right now, the extent and implications of the attack on Miljödata are being investigated, which we are following closely," says Region Halland's HR director Indre Grimpe on the region's website.
