Cyberattack on IT System Supplier Affects 200 Municipalities Across Sweden

A significant cyberattack on Miljödata, an IT systems supplier for approximately 80% of Sweden’s municipal systems, has resulted in accessibility issues across more than 200 regions in the country. In addition to the disruption of services, there are serious concerns regarding the potential theft of sensitive data. Local media reports indicate that the threat actor has demanded a ransom of 1.5 Bitcoins, equivalent to around $168,000, from Miljödata to prevent the leaking of stolen information. Miljödata, a Swedish software company, provides essential work environment and HR management systems for municipalities, regions, and organisations, handling critical functions such as medical certificates, rehabilitation cases, and systematic work environment management (SAM).

The attack occurred over the weekend, with Miljödata CEO Erik Hallén confirming on August 25 that over 200 municipalities have been affected. Hallén stated that the company is working intensively with external experts to investigate the incident and restore system functionality. Reports from BleepingComputer highlighted announcements from regions like Halland and Gotland, warning citizens that sensitive personal data may have been compromised. Swedish Minister for Civil Defence, Carl-Oskar Bohlin, mentioned that the incident is under evaluation with the assistance of CERT-SE, and a police investigation has commenced. As of now, no ransomware groups have publicly claimed responsibility for the attack, and Miljödata’s website remains offline, with email servers also down. 

Categories: Cyberattack, Data Breach, Service Disruption 

Tags: Cyberattack, Miljödata, Ransom, Sensitive Data, Municipalities, Service Disruption, Investigation, CERT-SE, Ransomware, Data Leak