Stadler, a Swiss manufacturer of railway rolling stock said that they have been affected by a security breach which might have also permitted the attackers to steal company data.
The attackers have confirmed their action and that they have compromised the IT network of the company and deployed some of its machines with malware that was used to exfiltrate data from the infected devices.
Stadler internal surveillance services discovered a malware which had caused the attack on the company’s IT network leading to the data leak. The extent of this leak has not been estimated yet.
According to a breach notification by the company, they believe that the incident was caused by a professional attack from unknown offenders.
The attackers also asked for a huge money and are trying to blackmail Stadler by threatening to release the stolen data.
Stadler reported the incident to the relevant authorities and have hired a team of external security experts to investigate the issue. The company’s backup data are complete and functioning and all impacted systems have been rebooted.
Stadler resumed their operations by restoring its backups and did not had to pay the ransom.
According to a Swiss website Tagblatt, the cyber-attack affected all the locations of the group. In Switzerland, Stadler has locations in Altenrhein, St.Margrethen, Erlen, Winterthur, Wallisellen and Biel.
The company assured that despite the coronavirus pandemic and cyber-attacks, they would continue to provide their services and produce new trains.