Ransomware attack at Comparis resulted in data breach
Last week’s ransomware attack on Swiss price comparison website Comparis resulted in a data breach and client data was most probably stolen, say Zurich police.
This content was published on
2 minutes
Keystone-SDA/swissinfo.ch/sb
Last Wednesday Comparis.ch, which has 80 million visits a year, was shut down by ransomware attackers demanding $400,000 (CHF370,000) in cryptocurrencies to put it back online. By Friday the website was operational again.A Comparis spokesman told SWI swissinfo.ch that no ransom had been paid.
The company initially said it believed that no customer data had been breached. However, on Wednesday, a week after the attack, Zurich cantonal police said detailed analyses had shown that the perpetrators of the attack had access to certain internal customer data belonging to Comparis.
The investigators assume that certain data was stolen. This includes customer data of Credaris AG, a Comparis subsidiary. The company said in a statement that it had directly informed those potentially affected. It strongly recommends customers change their password as a precaution.
The identity or location of the cyberattackers is not known and the ransom demand took the form of a URL implanted in a secure area of the IT system. Comparis has filed a criminal complaint over the attack.
Comparis.ch is used by consumers to compare prices on the likes of insurance and mortgage deals.
More frequent
Ransomware attacks appear to be getting more frequent and having greater success worldwide.
High-profile cases have also been making headlines: for example, when thousands of companies worldwide, including a supermarket chain in Sweden, were paralysed by a recent attack on United States IT services provider Kaseya.
US oil and gas company Colonial Pipeline was hit in May and had to pay a bitcoin ransom to get supplies back online, although the FBI said it had since recovered most of the cryptocurrency that was paid.
Last month the world’s largest meat processor, JBL, faced major disruption to its operations before paying a ransom demand.
In Switzerland, rail company Stadler was attacked last year and suffered confidential data being made public because it refused to pay up.
Popular Stories
More
Workplace Switzerland
Meet the foreigners who make up a quarter of the Swiss population
What can be done to protect biodiversity in your country?
Swiss voters are set to decide on a people’s initiative calling for better protection of ecosystems in the country. Have your say on the September 22 vote.
Beleaguered Swiss watch industry calls for political support
This content was published on
The Swiss watch industry is going through difficult times as global demand declines and the strong franc piles on the pressure.
This content was published on
Hollywood star Pamela Anderson will be honoured at the Zurich Film Festival for her career and role in the film The Last Showgirl.
Switzerland to host Ukraine mine action conference in October
This content was published on
Together with Ukraine, Switzerland is organising the Ukraine Mine Action Conference (UMAC2024) in Lausanne on October 17 and 18.
Switzerland revises pension expenditure downwards by billions
This content was published on
The Swiss government has corrected downwards the projected expenditure on old-age and survivor insurance in 2033 by CHF2.5 billion ($2.66 billion).
Excess mortality rate post-Covid could persist until 2033
This content was published on
According to a report by reinsurer Swiss Re, many countries are still experiencing excess mortality following the Covid-19 pandemic.
Swiss Army ends clean-up operation in storm-hit Maggia Valley
This content was published on
The Swiss Armed Forces completed 76 flight hours during the clean-up operation following the storm in the Maggia Valley in Ticino at the end of June.
Swiss cruise ship stranded on Danube River after heavy rains
This content was published on
Passengers on a Swiss river-cruise ship stranded on the Danube following heavy rainfall are still unable to disembark in Vienna due to flooding.
If you want to start a conversation about a topic raised in this article or want to report factual errors, email us at english@swissinfo.ch.
Read more
More
Ransomware attackers demand $400,000 from Swiss website
This content was published on
A popular Swiss price comparison website has been shut down by ransomware attackers demanding $400,000 (CHF370,000) in cryptocurrencies to put it back online.
This content was published on
Swiss electricity providers are vulnerable to a Colonial Pipeline style ransomware attacks, says an energy ministry report.
Hackers demand millions in ransom for stolen Stadler Rail documents
This content was published on
The hackers who stole data from Swiss train manufacturer Stadler Rail in early May have demanded payment of a ransom of $6 million in Bitcoin.
You can find an overview of ongoing debates with our journalists here . Please join us!
If you want to start a conversation about a topic raised in this article or want to report factual errors, email us at english@swissinfo.ch.