Data breach at major Swedish software supplier impacts 1.5M

https://www.bleepingcomputer.com/news/security/data-breach-at-major-swedish-software-supplier-impacts-15-million/

32•fleahunter•3h ago

Comments

toomuchtodo•3h ago

Miljödata is an IT systems supplier for roughly 80% of Sweden's municipalities. The company disclosed the incident on August 25, saying that the attackers stole data and demanded 1.5 Bitcoin to not leak it.

https://www.bleepingcomputer.com/news/security/it-system-sup...

https://www.svt.se/nyheter/inrikes/cyberattack-i-datasystem-...

SiempreViernes•3h ago

Then nobody paid and pii was published, now an integrity agency is starting an investigation

https://www.svt.se/nyheter/inrikes/integritetsmyndigheten-in...

cncrndnetizen•3h ago

Yet another sign that governments and corporations should support SECURE programming language development and treat it like other (critical) infrastructure.

vbezhenar•2h ago

PHP was developed 30 years ago.

marginalia_nu•2h ago

Most of the Swedish public sector runs on Java. Problem is it's, like public infrastructure in general, more attractive to build than to maintain.

Doesn't matter what language you use if you don't actually maintain the software.

pksebben•1h ago

It matters at least a little. Ceteris parabus, I'd prefer unmaintained rust code over unmaintained java.

That said, I'd also prefer maintained java over unmaintained rust, so I do see your point.

alistairSH•1h ago

Is there any indication this breach was related to the language used? Or was it something "higher level" like unsecured DB or S3 bucket or similar?

LtWorf•48m ago

Was the leak due to a stack overflow, double free or similar issue?

victorbjorklund•47m ago

We don’t know what happened but rumor is it was a file that was uploaded for an integration and that the server wasn’t secured. Same would have happened no matter if using Rust or any other language.

tetha•26m ago

I'd rather say we need more cyber anarchy and chaos within Europe. We need security researchers and the CCC and similar organizations with an absolute freedom to hack everything in Europe.

Get into everything, break every security control in Europe, be a pain. As long as function is not impacted, and security problems are reported responsibly. Don't DoS a power plant because you think you can, and face a judge if you do.

That's what foreign powers are doing and slowly collecting as preparation for the future, and that's the only real way to increase cyber security across the board.

I was right about dishwasher pods, and now I can prove it [video]

Chicken Coop Tech Stack

Principles for Global Online Meetings

Supercharging the ML and AI Development Experience at Netflix

Changing Times in UGC: Tripadvisor and Viator to Merge Operations

Dick Cheney Dead

Reranker Leaderboard

Wall Street's AI Obsession Makes Perfect Sense

Stone tool discovery suggests first humans were inventors

Show HN: A simple programming centric WordPress: TopCoders.Cloud

The CEO Has Three Responsibilities (2019)

New TikTok Algorithm Restricts Drop Site News Israel Reporting

Singapore to cane scammers as billions lost in financial crimes

Cast(x AS STRING) casts to integer in SQLite

Most Gen AI Players Remain 'Far Away' from Profiting: Interview with Andy Wu

Reconfiguring Soviet-era "TM" mines into smart mines

Sam Altman apparently subpoenaed moments into SF talk with Steve Kerr

Weather Forecasts Are Punctuated

Scalable synthesis of CO2-selective porous single-layer graphene membranes

'Big Short' Michael Burry bets $1B on AI bubble bursting

An Empirical Study of Knowledge Transfer in AI Pair Programming [pdf]

Juturna is a data pipeline library written in Python

GEN-0: SoTA 10B+ Foundation Model for Robotics with Harmonic Reasoning

Leo: Auto-Typing Tool for Teaching Coding

Two tiny banks are helping Trump's sons build a crypto empire

Show HN: A better ZSA keyboard layout explorer

Think for Yourself

Sequoia Capital Leader Exits in VC Shake-Up

Open Source Context-Aware PII Classifier

Verbalized Sampling: How to Mitigate Mode Collapse and Unlock LLM Diversity