Response to media reports about data theft

Response to media reports about data theft

Written by Customer Service on . Posted in Public Companies.

Over the past days Danish media have reported stories about a theft of source code involving Netcompany Denmark.  

We can confirm one single incident involving a simple theft of Netcompany Denmark source code and user manuals.  

We can refute that the incident is a ransomware attack.  

The data theft has not affected Netcompany or our customer’s operations and services.  

We know how the theft has occurred, the extent of the theft, and that the theft resides around source code and user manuals for Netcompany tools. 

Since the simple theft was discovered, we have worked in close collaboration with authorities and have implemented additional mitigating actions to ensure a continued high level of security in our production systems landscape. 

We have taken necessary precautions that ensure the stolen files cannot be used to gain unauthorized access to any system. 

In Denmark, Netcompany runs several government core systems however, the stolen files cannot be used to gain unauthorised access or compromise these systems in any way. Nor can the stolen files be used to gain unauthorised access to production systems.  

The stolen files that have subsequently been leaked originate from the same incident of data theft of Netcompany source code for Netcompany tools and user manuals.   

There have been media reports about passwords in the stolen files that can be used to gain access to Netcompany and customer’s systems and that “…the password Netcompany123 would grant access to most of the system environment”. That is not true. “Netcompany123” is not an actual password but an easily recognizable placeholder that is replaced by a strong security profile password when the source code is released into production hence there is no access to any running systems.  

There are no indications whatsoever that the event of the simple theft is part of a supply chain attack.   

We take this matter very seriously. We are in close contact with the Danish customers mentioned in the stolen data and cooperating with the authorities. 

Additional information For additional information, please contact: Netcompany Group A/S

Thomas Johansen, CFO, + 45 51 19 32 24
Frederikke Linde, Head of IR, +45 60 62 60 87

Attachment

Disclaimer & Cookie Notice

Welcome to GOLDEA services for Professionals

Before you continue, please confirm the following:

Professional advisers only

I am a professional adviser and would like to visit the GOLDEA CAPITAL for Professionals website.

Cookie Notice

We use cookies to improve your experience on our website

Information we collect about your use of Goldea Capital website

Goldea Capital website collects personal data about visitors to its website.

When someone visits our websites, we use a third party service, Google Analytics, to collect standard internet log information (such as IP address and type of browser they’re using) and details of visitor behavior patterns. We do this to allow us to keep track of the number of visitors to the various parts of the sites and understand how our website is used. We do not make any attempt to find out the identities or nature of those visiting our websites. We won’t share your information with any other organizations for marketing, market research or commercial purposes and we don’t pass on your details to other websites.

Use of cookies
Cookies are small text files that are placed on your computer or other device by websites that you visit. They are widely used to make websites work, or work more efficiently, as well as to provide information to the owners of the site.