Hackers behind last month’s cyber attack on Vestas, the world’s largest wind turbine manufacturer, have published a portion of the compromised data online.
That's according to a statement published by the company, in which it advised customers and business partners to “stay vigilant” as there's a possibility that their personal data may be misused.
The stolen data includes information embedded in identification documents such as passports, birth certificates, work permits, and driver’s licenses. In some cases, the cyber criminals managed to obtain social security numbers, medical certificates, injury reports, and bank account information.
Vestas stated that “not all employees and business partners of Vestas have been affected by the cyber security incident and the majority of the compromised personal data is not of a sensitive nature”.
This includes information embedded in CVs, such as names and contact details, emails, phone numbers, country of residence, education, and professional skills, as well as company documents including contracts and salary information.
Vestas said that it will notify the victims of the breach “if it is assessed that this is appropriate given the risk to such individuals”.
RELATED RESOURCE
2021 Thales cloud security study
The challenges of cloud data protection and access management in a hybrid and multi cloud world
IT Pro has reached out to the company for further information but hadn't received a response at the time of publication.
The attack, which took place on 19 November, forced Vestas to shut down its IT systems for two days “as a precaution”. The company has not named the hackers behind the attack, nor whether the cyber attack involved ransomware.
However, the news of data being published online suggests that that the company didn't comply with the hackers' ransom demands.
This is in contrast to a similar incident involving US natural gas provider Colonial Pipeline, which saw the company comply with the DarkSide hacking group’s demands and pay the $4.4 million (£3.1 million) ransom. CEO Joseph Blount said that he was aware that the decision was “highly controversial”, yet added that “it was the right thing to do for the country”.
“I didn't make it (the decision) lightly. I will admit that I wasn't comfortable seeing money go out the door to people like this,” he told the Wall Street Journal in May.
-
Trump's AI executive order could leave US in a 'regulatory vacuum'News Citing a "patchwork of 50 different regulatory regimes" and "ideological bias", President Trump wants rules to be set at a federal level
-
TPUs: Google's home advantageITPro Podcast How does TPU v7 stack up against Nvidia's latest chips – and can Google scale AI using only its own supply?
-
15-year-old revealed as key player in Scattered LAPSUS$ HuntersNews 'Rey' says he's trying to leave Scattered LAPSUS$ Hunters and is prepared to cooperate with law enforcement
-
The Scattered Lapsus$ Hunters group is targeting Zendesk customers – here’s what you need to knowNews The group appears to be infecting support and help-desk personnel with remote access trojans and other forms of malware
-
Impact of Asahi cyber attack laid bare as company confirms 1.5 million customers exposedNews No ransom has been paid, said president and group CEO Atsushi Katsuki, and the company is restoring its systems
-
The US, UK, and Australia just imposed sanctions on a Russian cyber crime group – 'we are exposing their dark networks and going after those responsible'News Media Land offers 'bulletproof' hosting services used for ransomware and DDoS attacks around the world
-
A notorious ransomware group is spreading fake Microsoft Teams ads to snare victimsNews The Rhysida ransomware group is leveraging Trusted Signing from Microsoft to lend plausibility to its activities
-
Volkswagen confirms security ‘incident’ amid ransomware breach claimsNews Volkswagen has confirmed a security "incident" has occurred, but insists no IT systems have been compromised.
-
The number of ransomware groups rockets as new, smaller players emergeNews The good news is that the number of victims remains steady
-
Teens arrested over nursery chain Kido hacknews The ransom attack caused widespread shock when the hackers published children's personal data
