Miljödata

A severe cyberattack on Swedish IT company Miljödata resulted in the theft and Darknet publication of personal data belonging to over 1.5 million individuals, including sensitive and private details. The breach, discovered in late August, exposed a significant portion of Sweden’s population, prompting an investigation by the Swedish Data Protection Authority (IMY) under GDPR compliance. The leaked data may include information on protected identities, former employees, and children, raising concerns about systemic security failures. IMY is scrutinizing Miljödata’s security protocols, data handling practices, and whether proper safeguards were in place for high-risk groups. Public sector entities including the City of Gothenburg, Älmhult Municipality, and Region Västmanland relying on Miljödata’s IT services are also under inspection for potential lapses in data protection. The incident underscores critical vulnerabilities in Sweden’s cybersecurity infrastructure, with IMY emphasizing the need for accountability and preventive measures to avert future large-scale breaches.

Source: https://cyberpress.org/swedish-it-firm-data-breach/

TPRM report: https://www.rankiteo.com/company/miljodata-ab

"id": "mil2532325110525",
"linkid": "miljodata-ab",
"type": "Breach",
"date": "5/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': '1,500,000+ individuals',
                        'industry': 'Information Technology',
                        'location': 'Sweden',
                        'name': 'Miljödata',
                        'type': 'Private IT Company'},
                       {'industry': 'Government',
                        'location': 'Gothenburg, Sweden',
                        'name': 'City of Gothenburg',
                        'type': 'Public Sector (Municipality)'},
                       {'industry': 'Government',
                        'location': 'Älmhult, Sweden',
                        'name': 'Älmhult Municipality',
                        'type': 'Public Sector (Municipality)'},
                       {'industry': 'Government',
                        'location': 'Västmanland, Sweden',
                        'name': 'Region Västmanland',
                        'type': 'Public Sector (Regional Government)'}],
 'data_breach': {'data_exfiltration': 'Yes (Data published on the Darknet)',
                 'number_of_records_exposed': '1,500,000+',
                 'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personal Data',
                                              'Sensitive Information',
                                              'Data of Protected Identities',
                                              "Former Employees' Data",
                                              "Children's Data"]},
 'date_detected': '2023-08-31',
 'description': 'A serious data breach at Swedish IT company Miljödata exposed '
                'personal information of over 1.5 million people, with '
                'attackers stealing and publishing sensitive data on the '
                'Darknet. The Swedish Data Protection Authority (IMY) has '
                'launched GDPR inspections targeting Miljödata and several '
                'public sector organizations (City of Gothenburg, Älmhult '
                'Municipality, Region Västmanland) that relied on its IT '
                'services. The breach has prompted investigations into '
                'security measures, data protection compliance, and the '
                'handling of sensitive information, including data belonging '
                'to protected identities, former employees, and children.',
 'impact': {'brand_reputation_impact': 'High (Significant portion of Sweden’s '
                                       'population affected; public sector '
                                       'involvement)',
            'data_compromised': ['Personal Information', 'Sensitive Data'],
            'identity_theft_risk': 'High (Sensitive personal data exposed)',
            'legal_liabilities': ['Potential GDPR Violations',
                                  'Regulatory Fines'],
            'systems_affected': ['Miljödata IT Systems',
                                 'Public Sector Systems (City of Gothenburg, '
                                 'Älmhult Municipality, Region Västmanland)']},
 'initial_access_broker': {'data_sold_on_dark_web': 'Yes (Data published on '
                                                    'the Darknet)',
                           'high_value_targets': ['Personal Data of Protected '
                                                  'Identities',
                                                  "Children's Data"]},
 'investigation_status': 'Ongoing (IMY inspections in progress; scope may '
                         'expand to additional organizations)',
 'ransomware': {'data_exfiltration': 'Yes'},
 'references': [{'source': 'Swedish Data Protection Authority (IMY) '
                           'Announcement'}],
 'regulatory_compliance': {'legal_actions': ['IMY GDPR Inspections Initiated'],
                           'regulations_violated': ['Potential GDPR '
                                                    'Non-Compliance'],
                           'regulatory_notifications': ['Swedish Data '
                                                        'Protection Authority '
                                                        '(IMY) notified and '
                                                        'investigating']},
 'response': {'communication_strategy': 'IMY has contacted Miljödata and '
                                        'affected organizations to assess the '
                                        'breach scope and data impact.'},
 'title': 'Data Breach at Swedish IT Company Miljödata Affecting 1.5 Million '
          'Individuals',
 'type': ['Data Breach', 'Unauthorized Data Disclosure']}