Microlise reports cyberattack, data breach

Telematics technology firm Microlise reports a cyberattack on its network, resulting in the exposure of certain employee data.

The attack caused temporary disruption of services, and the company expects a full return to normal operations by the end of the following week. Microlise has engaged with third-party cybersecurity experts to investigate the breach and contain the threat.

Key clients of Microslise experienced disruptions:

• DHL: Delivery tracking was temporarily unavailable, impacting Nisa Group stores.
• Serco: Tracking systems and panic alarms on prisoner transport vans were affected, temporarily disabling tracking capabilities for three days but without service interruptions.

Microlise reported that "limited employee data" was impacted. The company is notifying affected employees in accordance with regulatory requirements and has reported the breach to the UK Information Commissioner’s Office (ICO).

According to the company, no customer data was compromised. The nature of the data compromised or the number of affected staff members has not been disclosed.

Experts believe the incident has characteristics typical of a ransomware attack, although Microlise has not confirmed this.

Update - as of 20th of November, the SafePay ransomware gang has claimed responsibility for the attack. SafePay claims to have exfiltrated 1.2 TB of data and has given Microlise less than 24 hours to comply with their extortion demands before leaking the stolen information.

Microlise has acknowledged the data theft occurred earlier this month, they maintain that no customer systems data was compromised.