ISS, the multinational Denmark-based facility services company, was hit with a malware that shuts down shared IT services worldwide.
ISS, the Danish multinational services company announced it was hit with malware, in response to the incident the firm disabled access to shared IT services worldwide. ISS services include cleaning services, support services, property services, catering services, security services and facility management services.
The computer systems of the company were disabled for a few days, the infection caused the disruption of the operations.
Over 43,000 company employees were not able to access email or other online services.
The incident took place on February 17th, the good news is that according to the company customer data has not been compromised.
“On 17 February 2020, ISS was the target of a malware attack. As a precautionary measure and as part of our standard operating procedure, we immediately disabled access to shared IT services across our sites and countries, which ensured the isolation of the incident.” reads the announcement published by ISS.
“The root cause has been identified and we are working with forensic experts, our hosting provider and a special external task force to gradually restore our IT systems. Certain systems have already been restored.”
ISS World Group did not share details
While ISS World is not sharing details of the attack, experts believe that company systems were infected with a ransomware. The incident response procedure implemented by the company suggests a ransomware infection that was mitigated with the shut down of online services.
ISS World is investigating the incident, the company confirmed to have found the root cause of the security breach with the help of forensic experts.
ISS World’s website was restored on Friday morning, there is no news about the availability email and other online systems.
(SecurityAffairs – ransomare, malware)