Miljödata, which provides the system Adato for documenting long-term sick leave and rehabilitation, has been targeted in a cyberattack. The extent of the attack is still unclear, and it is not yet confirmed whether any personal data has been leaked.
Karlstad University was notified about the cyberattack on Monday morning, 25 August. While awaiting more information, Karlstad University took several measures.
On Monday evening, Miljödata announced that personal data connected to Adato, which is widely used by universities, municipalities and regions, may have been leaked in the attack. The extent of a possible leak is yet unknown.
– There is a risk that sensitive personal data has been leaked, but we don’t yet know whether this is the case. We take this matter seriously and understand that it may cause concern, says Chief Security Officer, Berith Rannberg.
Karlstad University is reporting the incident to the Swedish Authority for Privacy Protection, IMY. Miljödata has filed a police report and is continuing its own investigation into the attack, while also working to restore the system.
The cyberattack on Miljödata does not pose any risk to Karlstad University’s overall IT environment, as there is no link from Miljödata into the university’s systems. Data is only sent from Karlstad University to them.
– We will provide more information as soon as we have more details, says Berith Rannberg.
