L’entreprise d’armement et de systèmes de défense a subi une grave attaque de cyberespionnage. Des données du service de messagerie de l’administration fédérale auraient été volées.
Source: Une grande quantité de données volées lors de l’attaque contre Ruag – Le Temps
Berne, 12 May 2016. Cybercrime strikes Switzerland: RUAG has considerable IT expertise and many years of successful experience in the security field. Nevertheless, there is no such thing as 100% security. With the support of federal agencies, an attack on RUAG has been detected and halted. Further damage has thus been averted.
RUAG has expertise in detecting and eliminating IT attacks and securing systems against them. Based on information from the federal intelligence agency, RUAG was able to detect and successfully halt a highly professional hacker attack on its IT systems. Because of the small volume of data stolen, the attackers’ strategy remained unrecognized for some time.
Here are the key facts and background information:
RUAG is constantly confronted with cyber-attacks and is accustomed to having to repel them.
RUAG has no indications that customers other than the DDPS were affected.
Moreover, the malware has not crossed over into the DDPS’s systems.
RUAG regrets the intrusion into its systems.
The attack on RUAG was carried out very professionally. Together with the relevant federal authorities (in particular the Reporting and Analysis Centre for Information Assurance “MELANI” and the DDPS), RUAG rapidly and accurately initiated the necessary response, thereby averting further damage.
RUAG strictly observes federal security regulations. No data classified as secret is stored on RUAG systems which are connected to the Internet.
RUAG can therefore state that no secret data was affected by the attack on RUAG.
Furthermore, any data classified as confidential stored on Internet-connected RUAG systems is encrypted.
The data obtained account for less than 0.01% of the volume of data managed by RUAG.
Thanks to the immediate response, RUAG is certain that no further data was copied or stolen after the intrusion was detected.
RUAG has been observing and tracing the hackers’ activities since January 2016, acquiring intelligence that will enable us to make further long-term improvements to the security of our systems. It would not have been possible to release information sooner without jeopardizing these covert investigations, which were conducted with the Office of the Attorney General and the relevant federal agencies.
For confidentiality reasons and in line with RUAG policy, the results of the investigations are not being disclosed to the public. Moreover, their content could allow inferences to be made about the company’s security architecture.
Le Congrès informatique de la police suisse (SPIK) s’adresse aux informaticiens, aux cadres et aux hommes de terrain actifs de tous les corps de police. Les représentants des entreprises partenaires et de l’administration sont également bienvenus.
Le congrès a pour objectif de créer un réseau entre les informaticiens de la police et avec les entreprises partenaires. C’est une plateforme pour des projets intéressants ainsi que pour de nouvelles impulsions et idées. La prise en compte des expériences d’autres corps peut simplifier son propre travail voire même permettre de faire des économies en suivant et en finançant ensemble les projets. Enfin, les décideurs et les hommes de terrain de la police et de l’administration y découvrent les possibilités et les opportunités de l’ICT.
Présentation dans le domaine cyber :
Dutch Institute for Technology Safety and Security & Atos : BigData to make your city safe
RUAG Suisse, RUAG Defence : Sécurité coordonnée
