Akira Group Attacks Finnish Tietoevry Causing Disruption Across Swedish Businesses

January 19, 2024

Finnish IT services and enterprise cloud hosting provider Tietoevry has suffered an Akira ransomware attack impacting cloud hosting customers in one of its data centers in Sweden. The attack encrypted the company’s virtualization and management servers used to host the websites or applications for a wide range of businesses in Sweden.

Companies impacted by the attack: Sweden’s largest cinema chain, Filmstaden, discount retail chain Rusta, raw building materials provider Moelven, farming supplier Grangnården, Tietoevry’s managed Payroll and HR system, Primula (used by the government, universities, and colleges in Sweden), numerous government agencies and municipalities.

read more

Operational Shutdown at Uponor, Global Intelligent Plumbing and Climate Solutions provider

November 5, 2022

On 5 November 2022, Uponor was subject to a ransomware attack, which impacted its operations in Europe and North America.

Uponor announced in its press release on 18 November 2022, the company’s operations are still affected by the ransomware attack that occurred on 5 November. After the attack, the company took immediate actions to investigate and remediate the situation. One of these actions was to shut down all systems and production as a precautionary measure. After one week of production shutdown, operating levels have started to recover, and customer deliveries have restarted in all divisions during the past week. Uponor’s current focus lies on accelerating operational performance back to the operating levels before the attack while protecting the company’s systems.

As the attack happened close to the end of the year, the ability to cover lost sales during 2022 remains uncertain. Therefore, Uponor is withdrawing its guidance for 2022 until there is better visibility on operational ramp up and sales coverage.

read more

BRP Suspends Operations Following Ransomware Attack

August 8, 2022

The Quebec-based company, which makes snowmobiles, personal watercraft and all-terrain vehicles, said it had been the target of “malicious computer activity” and had taken “immediate steps to contain the situation.” BRP (formerly Bombardier Recreational Products) said it has hired cybersecurity experts to help secure its systems and support an internal investigation. Suspending operations could delay some transactions with customers and vendors, BRP said.

BRP provided an update on the situation on August 15: “The Company confirms that the malware infiltration came through a third-party service provider. BRP believes that the impact of the cyberattack was limited to its internal systems.” “The evidence collected so far allows BRP to believe that the impact of this incident from a data privacy perspective should be limited. “

read more