[HN Gopher] Data breach at major Swedish software supplier impac...
       ___________________________________________________________________
        
       Data breach at major Swedish software supplier impacts 1.5M
        
       Author : fleahunter
       Score  : 51 points
       Date   : 2025-11-04 16:54 UTC (6 hours ago)
        
 (HTM) web link (www.bleepingcomputer.com)
 (TXT) w3m dump (www.bleepingcomputer.com)
        
       | toomuchtodo wrote:
       | Miljodata is an IT systems supplier for roughly 80% of Sweden's
       | municipalities. The company disclosed the incident on August 25,
       | saying that the attackers stole data and demanded 1.5 Bitcoin to
       | not leak it.
       | 
       | Related:
       | 
       | https://www.bleepingcomputer.com/news/security/it-system-sup...
       | 
       | https://www.svt.se/nyheter/inrikes/cyberattack-i-datasystem-...
        
         | SiempreViernes wrote:
         | Then nobody paid and pii was published, now an integrity agency
         | is starting an investigation
         | 
         | https://www.svt.se/nyheter/inrikes/integritetsmyndigheten-in...
        
       | cncrndnetizen wrote:
       | Yet another sign that governments and corporations should support
       | SECURE programming language development and treat it like other
       | (critical) infrastructure.
        
         | vbezhenar wrote:
         | PHP was developed 30 years ago.
        
         | marginalia_nu wrote:
         | Most of the Swedish public sector runs on Java. Problem is
         | it's, like public infrastructure in general, more attractive to
         | build than to maintain.
         | 
         | Doesn't matter what language you use if you don't actually
         | maintain the software.
        
           | pksebben wrote:
           | It matters at least a little. Ceteris parabus, I'd prefer
           | unmaintained rust code over unmaintained java.
           | 
           | That said, I'd also prefer maintained java over unmaintained
           | rust, so I do see your point.
        
         | alistairSH wrote:
         | Is there any indication this breach was related to the language
         | used? Or was it something "higher level" like unsecured DB or
         | S3 bucket or similar?
        
         | LtWorf wrote:
         | Was the leak due to a stack overflow, double free or similar
         | issue?
        
         | victorbjorklund wrote:
         | We don't know what happened but rumor is it was a file that was
         | uploaded for an integration and that the server wasn't secured.
         | Same would have happened no matter if using Rust or any other
         | language.
        
         | tetha wrote:
         | I'd rather say we need more cyber anarchy and chaos within
         | Europe. We need security researchers and the CCC and similar
         | organizations with an absolute freedom to hack everything in
         | Europe.
         | 
         | Get into everything, break every security control in Europe, be
         | a pain. As long as function is not impacted, and security
         | problems are reported responsibly. Don't DoS a power plant
         | because you think you can, and face a judge if you do.
         | 
         | That's what foreign powers are doing and slowly collecting as
         | preparation for the future, and that's the only real way to
         | increase cyber security across the board.
        
           | dmix wrote:
           | You'll have to pay for that if you're going to have people as
           | motivated as the adversaries.
        
         | shakna wrote:
         | In the past, Datacarry has almost exclusively used phishing as
         | their first penetration of systems. (Exploits follow for
         | escalation, but not generally penetration.)
         | 
         | Whilst we don't know exactly what they did here, a secure
         | programming language will do bupkus when you're targeting the
         | meatbag behind the keyboard. We need to treat people like
         | infrastructure, that can and will eventually fail.
        
       | cv5005 wrote:
       | This data is publically available to anyone in Sweden:
       | 
       | Your salary (well, last years taxable income), debts/credit
       | rating, criminal history, address, phone number, which vehicles
       | and properties you own and which company boards you're on.
       | 
       | One of organized criminals biggest income these days are scamming
       | rich old folks because it's so trivial to get all details needed
       | (and who to target) to be a pretty convincing bankman, IRS type
       | agent/etc.
       | 
       | Some of it you have to kind of manually request at various
       | places, but it's all available.
       | 
       | So data breaches aren't really that big of a deal when everything
       | is already public.
        
         | zith wrote:
         | If I understand correctly the only thing not public that was
         | leaked was the role each person had in the government.
        
           | tuwtuwtuwtuw wrote:
           | Why would the role within the government not be public? I
           | can't imagine that being treated as a secret.
        
         | reppap wrote:
         | Afaik this breach also contained a lot of data about medical
         | condition related to workplaces.
        
       ___________________________________________________________________
       (page generated 2025-11-04 23:01 UTC)