Xplain

The cyber attack on the Bernese IT firm Xplain, which offers its services to numerous federal and cantonal government ministries, the army, customs, and the Federal Office of authorities, was investigated by Swiss authorities.

On a Darknet forum, threat actors have already posted information they claim to have stolen from the Federal Office of Police (Fedpol) and the Federal Office for Customs and Border Security (FOCBS).

While confirming the attack, Fedpol and the federal customs office made an effort to minimize the incident. Threat actors only got access to simulated, anonymous data for testing reasons, claims Fedpol.

According to the Federal Office for Customs and Border Security (FOCBS), the disclosed data came from correspondence with its clients.

Source: https://securityaffairs.com/147047/data-breach/fedpol-swiss-police-cyber-attack.html

TPRM report: https://scoringcyber.rankiteo.com/company/xplaingroup

"id": "xpl45424923",
"linkid": "xplaingroup",
"type": "Data Leak",
"date": "06/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': ['Federal Office of Police '
                                               '(Fedpol)',
                                               'Federal Office for Customs and '
                                               'Border Security (FOCBS)'],
                        'industry': 'Information Technology',
                        'location': 'Bernese, Switzerland',
                        'name': 'Xplain',
                        'type': 'IT Firm'}],
 'data_breach': {'type_of_data_compromised': ['Simulated, anonymous data for '
                                              'testing purposes (Fedpol)',
                                              'Correspondence with clients '
                                              '(FOCBS)']},
 'description': 'The cyber attack on the Bernese IT firm Xplain, which offers '
                'its services to numerous federal and cantonal government '
                'ministries, the army, customs, and the Federal Office of '
                'authorities, was investigated by Swiss authorities. Threat '
                'actors have already posted information they claim to have '
                'stolen from the Federal Office of Police (Fedpol) and the '
                'Federal Office for Customs and Border Security (FOCBS) on a '
                'Darknet forum.',
 'impact': {'data_compromised': ['Simulated, anonymous data for testing '
                                 'purposes (Fedpol)',
                                 'Correspondence with clients (FOCBS)']},
 'initial_access_broker': {'data_sold_on_dark_web': ['Information claimed to '
                                                     'be stolen from the '
                                                     'Federal Office of Police '
                                                     '(Fedpol)',
                                                     'Information claimed to '
                                                     'be stolen from the '
                                                     'Federal Office for '
                                                     'Customs and Border '
                                                     'Security (FOCBS)']},
 'title': 'Cyber Attack on Bernese IT Firm Xplain',
 'type': 'Data Breach'}

Xplain

Lazarus Naturals

Estes Forwarding Worldwide

Synnovis