Viking Line: Viking Line confirms data breach linked to third-party supplier

Viking Line Confirms Data Breach via Third-Party Supplier

Viking Line, a ferry operator based in Åland, has disclosed a data breach affecting customer information following a cybersecurity incident at one of its third-party service providers. The breach highlights the growing risks associated with supply chain vulnerabilities in cybersecurity.

While specific details about the compromised data remain undisclosed, the incident underscores the challenges organizations face in securing sensitive information when relying on external vendors. Viking Line’s confirmation follows a pattern of recent high-profile breaches linked to third-party exposures, emphasizing the need for stricter vendor risk management.

No timeline for the breach or the identity of the affected supplier has been publicly released. The incident serves as a reminder of the cascading impact cyberattacks can have on interconnected business ecosystems.

Source: https://www.teiss.co.uk/news/viking-line-confirms-data-breach-linked-to-third-party-supplier-17210

Viking Line cybersecurity rating report: https://www.rankiteo.com/company/viking-line

"id": "VIK1773447885",
"linkid": "viking-line",
"type": "Breach",
"date": "1/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': 'Yes',
                        'industry': 'Transportation',
                        'location': 'Åland',
                        'name': 'Viking Line',
                        'type': 'Ferry Operator'}],
 'attack_vector': 'Third-Party Supplier Compromise',
 'data_breach': {'type_of_data_compromised': 'Customer information'},
 'description': 'Viking Line, a ferry operator based in Åland, has disclosed a '
                'data breach affecting customer information following a '
                'cybersecurity incident at one of its third-party service '
                'providers. The breach highlights the growing risks associated '
                'with supply chain vulnerabilities in cybersecurity.',
 'impact': {'data_compromised': 'Customer information'},
 'lessons_learned': 'Highlights the growing risks associated with supply chain '
                    'vulnerabilities in cybersecurity and the need for '
                    'stricter vendor risk management.',
 'post_incident_analysis': {'root_causes': 'Third-party supplier cybersecurity '
                                           'incident'},
 'recommendations': 'Stricter vendor risk management and enhanced supply chain '
                    'security measures.',
 'response': {'communication_strategy': 'Public disclosure'},
 'title': 'Viking Line Data Breach via Third-Party Supplier',
 'type': 'Data Breach'}

Viking Line: Viking Line confirms data breach linked to third-party supplier

CPUID: HWMonitor and CPU-Z developer CPUID breached by unknown attackers — cyberattack forced users to download malware instead of valid apps for six hours

Arizona State Legislature, Oklahoma State Legislature and Spanish Parliament: ‘It’s a potential national security threat’: Proton study finds over 3,500 US legislators’ official emails leaked and exposed on the dark web

China’s National Supercomputing Center in Tianjin: Data heist of the century? Hacker claims to steal top-secret files from China supercomputer - data up for sale