A risk actor has claimed to have leaked supply code and different delicate materials tied to Sweden’s e-government platform, prompting an investigation by Swedish authorities and an incident response by CGI Sverige.
Cybersecurity accounts on X and native media reported Thursday {that a} risk actor calling itself ByteToBreach had revealed materials it stated got here from CGI Sverige, the Swedish subsidiary of worldwide IT large CGI Group, and Sweden’s e-government infrastructure, in accordance to native information outlet Aftonbladet.
CGI instructed Aftonbladet its cybersecurity group found an incident involving two inside check servers in Sweden that weren’t utilized in manufacturing. The corporate stated an older utility model and its supply code have been accessible, however that there was no indication that buyer manufacturing knowledge or operational companies have been affected. CGI press secretary Agneta Hansson confirmed to the information outlet that authorities are investigating the leak.
About 95% of Sweden’s 10.7 million inhabitants used e-government companies in 2024, in response to Eurostat knowledge.
The leaked recordsdata might embrace the platform’s supply code and configuration recordsdata, inside employees database, residents’ personally identifiable data databases, digital signing paperwork and different delicate knowledge.
Cointelegraph contacted CGI Group and Sweden’s nationwide IT incident middle, CERT-SE, for touch upon the reported leak.
Swedish civil protection minister confirms cybersecurity incident
Nonetheless, Carl-Oskar Bohlin, Sweden’s minister of civil protection, confirmed the information leak and stated the federal government is working with CERT-SE and the Nationwide Cyber Safety Heart to determine the culprits.
IT safety professional Anders Nilsson confirmed that the hacked assets appeared genuine. “Supply code for a number of packages appears to exist, and from what I can see, the hack seems to be real,” Nilsson wrote in an e-mail to media outlet SVT.
Associated: SlowMist introduces Web3 safety stack for autonomous AI brokers
Hackers goal Swedish and European infrastructure
Hackers are more and more focusing on public-facing cyber infrastructure all through Sweden and Europe, warned risk intelligence platform Menace Panorama.
“This isn’t an remoted incident,” the platform stated in a Thursday report.
“ByteToBreach is similar actor liable for the Viking Line breach posted simply sooner or later prior, suggesting an ongoing marketing campaign focusing on Swedish and European infrastructure through CGI’s managed companies footprint.”
Associated: French couple robbed of $1M in Bitcoin by criminals posing as police
The risk actor claimed to have leaked the complete supply code of the e-government platform, sharing a number of supporting supplies.
Menace-intelligence researchers stated the publicity might nonetheless carry follow-on danger if attackers use the leaked code or documentation to determine weaknesses in public-facing techniques, although the complete contents of the dump haven’t been independently verified.
Journal: Meet the onchain crypto detectives preventing crime higher than the cops
