Geopost has reported a cybersecurity incident involving unauthorized access to a database operated by its Spanish subsidiary. Upon discovery, the company promptly alerted the National Cybersecurity Institute (INCIBE) and the Spanish Data Protection Agency (AEPD) and initiated an investigation with cybersecurity experts. The compromised data includes essential information for transport services such as names, addresses, emails, and occasionally phone numbers.
The company, alongside its Spanish subsidiary, has swiftly implemented measures to manage and mitigate the impact of the incident. These efforts involve password renewals, device formatting, enhanced network security, real-time monitoring, and automation improvements to bolster overall system protection. Despite not being a ransomware attack, there is concern that stolen data could be used for spamming or phishing activities.
To address potential risks, Geopost advises vigilance against suspicious emails or calls, particularly from unfamiliar contacts. Interested parties can reach out to Geopost’s Data Protection Officer via dpo@geopost.com for further information, inquiries, or guidance regarding the incident.
