Divya reports:
Swedish authorities have launched formal investigations into a significant data breach affecting Miljödata, a prominent IT company whose security lapse exposed the personal information of over 1.5 million individuals.
The Swedish Data Protection Authority (IMY) initiated the probe following the August attack, which resulted in sensitive data being published on the Darknet and affecting multiple Swedish municipalities and regional entities that relied on Miljödata’s services.
The attack represents one of Sweden’s most substantial data exposures in recent years, compromising personal details across a large portion of the country’s population.
The Swedish Prosecution Authority confirmed that attackers successfully extracted and published data belonging to more than 1.5 million private citizens.
Since the initial attack, IMY has maintained ongoing communication with Miljödata and affected organizations, working to understand the full scope of the incident and its implications for Swedish data protection standards.
Read more at gbhackers.
DataBreach.com provides a timeline and a search tool to check if your data was caught up in the breach.
A Timeline of the Unraveling
- August 23-24, 2025: Miljödata’s IT environment is breached in a cyberattack over the weekend. The company detects the attack on Saturday, August 23.
- August 27, 2025: The attack is publicly disclosed, with Miljödata confirming it is working with external experts to investigate the scope.
- September 1, 2025: Based on information from the ongoing investigation, some clients perform a controlled restart of the affected Adato system.
- September 12, 2025: The hacker group responsible for the breach posts a threat on the darknet, warning they will publish the stolen data.
- September 14, 2025: The threat is realized as experts confirm the vast trove of personal data has been published on the darknet, increasing the risk of fraud.
- September 15, 2025: Swedish prosecutors confirm the scale of the leak, stating over 1.5 million individuals are affected and a preliminary investigation into gross unauthorized access and attempted extortion is underway.
- September 16, 2025: Affected organizations like Lund University supplement their reports to authorities with new information regarding the darknet publication.