A cyberattack on a subcontracted company by the General Directorate of the Guardia Civil and the Ministry of Defence has compromised the personal and health data of thousands of officers and Armed Forces members. The attack, attributed to the Lockbit 3.0 ransomware, occurred on March 22, as confirmed by Medios de Prevención Externos Sur SL, responsible for conducting medical examinations for these officials. While there’s no evidence of data leakage, precautionary measures have been taken, including forensic analysis, information restoration, and password changes for affected personnel.
Medios de Prevención Externos Sur SL has assured there’s no current evidence of data leakage but has implemented technical measures to counteract the cyberattack’s impact. Among these measures are forensic analysis, data restoration, and a mass password reset for affected users. Despite these precautions, concerns persist among professional associations within the Armed Institute regarding potential risks associated with the breach.
While Medios de Prevención Externos Sur SL maintains that there’s no proof of data compromise, they have taken significant steps to secure systems and data. These include a comprehensive forensic analysis, data recovery efforts, and the enforcement of password changes for affected personnel. However, professional associations connected to the Armed Institute express concerns about the potential consequences of the breach, highlighting the sensitivity of the compromised data.
