"Switzerland: Play Ransomware Leaked 65,000 Government Documents"

The National Cyber Security Centre (NCSC) of Switzerland has recently released a report on its analysis of a data breach following a ransomware attack on Xplain, disclosing that the incident impacted thousands of sensitive Federal government files.  Xplain is a Swiss technology and software solutions provider for various government departments, administrative units, and even the country's military force.  The Play ransomware gang breached the company on May 23, 2023.  During the investigation, the NSCS confirmed that 65,000 government documents were leaked during the breach.  The NSCS noted that out of approximately 1.3 million files published by Play ransomware, about 5% (65,000 documents) are relevant to the Federal Administration.  Most (95%) of those files impact the administrative units of the Federal Department of Justice and Police (FDJP): the Federal Office of Justice, the Federal Office of Police, the State Secretariat for Migration, and the internal IT service center ISC-FDJP.  The NSCS noted that the Federal Department of Defence, Civil Protection and Sport (DDPS) was minorly affected, accounting for just over 3% of that data.  Around 5,000 documents contained sensitive information, including personal data (names, email addresses, telephone numbers, and addresses), technical details, classified information, and account passwords.  A small set of a few hundred files contained IT system documentation, software or architectural data, and passwords.

 

BleepingComputer reports: "Switzerland: Play Ransomware Leaked 65,000 Government Documents"

Submitted by Adam Ekwall on