120 Swedish authorities have been affected by the cyber attack against Tietoevry. The attack, carried out by a group of around ten people in Russia, is aimed at making money rather than being directed by the Russian security service, according to cyber threat expert Mattias Wåhlén.
The attack has impacted Swedish society in various ways, including jeopardizing payroll, leaking patient information, and affecting businesses such as Filmstaden. The group responsible for the attack, Akira, is known for their involvement in ransomware activities and has been active in the Nordic region recently. Their core members are likely situated in Russia, with a larger number of freelance hackers contributing to the attack.
Wåhlén explains that the Russian authorities turn a blind eye to cybercrime as long as it does not affect Russia, but there are connections and mutual interests between them and the hacker groups. The hackers are primarily motivated by financial gain and are not driven by political motives, although there have been instances of groups targeting Ukrainian government agencies for political reasons.
Wåhlén predicts that the recent cyber attack is not the last one and attributes the increasing number of ransomware attacks to the worsening Russian economy, leading to more individuals turning to cybercrime as a means of livelihood.
He emphasized that while more companies are becoming prepared for such attacks, not all are sufficiently equipped to defend against cyber threats. The attack has affected various organizations, including government agencies, businesses, and healthcare facilities, prompting the Swedish Civil Contingencies Agency to regard it as a wake-up call for the country to prioritize cybersecurity.
