20K Employees of Swiss Authorities Found in the 'Collections' Data Dump

Swiss Authorities' Employees Affected by the Collections Database

In January, security specialist Troy Hunt analyzed a data dump of more than 770 million email addresses and 21 million passwords that was traded for free on hacking forums. The database had been compiled from hundreds if not thousands of different breaches, and it was dubbed 'Collection #1'. It wasn't long before Collections #2, #3, #4, and #5 broke the surface as well.

It's still not clear where the emails and passwords come from, and many people argue that most of the details are quite old and therefore irrelevant. There's no escaping the fact, however, that billions of records are changing hands at the moment, and there are quite a few people who would like to know who is affected. Timo Grossenbacher and Julian Schmidli, two journalists working for Schweizer Radio und Fernsehen (SRF), a Swiss broadcasting company, got the chance to take a look.

At least 3 million Swiss records found in the “Collections”

Predictably, the journalists wanted to find out how many Swiss users are in the database, but it was clear from the very start that this is simply not possible. For one, people tend to have more than one email address which means that 2 billion compromised records don't equate to 2 billion users who have had their data stolen. In addition to this, it's often difficult to determine the nationality of a user just by looking at their email address, especially if it's registered with an international provider like Gmail.

The only thing Grossenbacher and Schmidli could do was look at the addresses that ended with one of the two Swiss TLDs – .ch and .swiss. The journalists found a total of 3 million matches. In the grand scheme of things, this might not seem like all that much. Consider the fact that the whole population of Switzerland sits at a little over 8.5 million, however, and you'll see that the number is significant.

SRF's reporters weren't done, though. After digging deeper into the data, they stumbled upon a few familiar email addresses.

20,000 records connected to Swiss authorities

It's safe to say that certain cybercriminals won't mind having access to some of these emails. 100 of them belong to employees of Skyguide – a company that monitors Switzerland's airspace. About 800 of the Swiss national postal service's emails have ended up in the dump, and a few hundred more seem to belong to various regional police departments. 4 thousand emails of the national railway company and about 12 thousand accounts of people working in local administration are also in the dump. 2,500 of the exposed emails belong to federal government employees, and 500 records are connected to the Swiss Army.

High-ranking officials are also in the dump

In organizations such as the ones listed above, even low-level employees have access to some sensitive data. In this case, however, we're not just talking about low-level employees.

Grossenbacher and Schmidli found the email addresses and passwords of people like:

  • Thomas Jordan, the President of the Swiss National Bank
  • Philippe Rebord, the Chief of the Swiss Armed Forces
  • Markus Seiler, Secretary General of the Department of Foreign Affairs who was previously working for Switzerland's intelligence services

The data of a couple of dozen former parliamentarians and Federal Councilors is also in the Collections.

Were Swiss authorities hacked?

In light of all this, you'd be forgiven for thinking that these organizations somehow lost the data of their employees. When asked about it, however, spokespeople told SRF that Swiss authorities' systems have not been compromised in any way. If this is indeed the case, it means that some of the people working at the affected institutions have been using their office accounts for purposes that might not be connected to their work. The PR people announced that they'll have a word with the employees about it, and most of them said that Two-Factor Authentication has already been implemented which further mitigates the risk.

They all seem to agree that no data has been put at risk at the moment, but even if we assume that this is correct, we shouldn't underestimate the importance of SRF's findings. The situation needs to be analyzed closely, and the lessons must be learned.

By Duran
March 19, 2019
News
English
March 19, 2019
News

Popular Posts

As Fears of the Coronavirus Pandemic Spread, So Does...

4 years ago

Microsoft Warns State-Backed Threat Actors Are Using AI in...

4 days ago

Trojan Al11 Malware Detection & Removal - An Essential...

11 months ago

Pinaview is a Fully-Featured Adware App

10 months ago

"Your iCloud is Being Hacked" and "Your iPhone has Been...

7 months ago

What is Lucky Ransomware?

7 months ago

Related Posts

News

'Collections' Data Leak Affects Even More Passwords: The Total Now Comes to 2.2 Billion

Two thousand files, 87 GB, and just under 2.7 billion records. This is what cybersecurity expert Troy Hunt was faced with when one of his followers pointed him to a large database of sensitive information. After... Read more

February 1, 2019
Password Security

Is There Any Difference Between a Data Hack and a Data Breach?

You've heard of data breaches and data hacks. It's been all over the news in recent years with journalists using the words interchangeably, but are they the same? There are similarities to be sure, but they're not the... Read more

June 28, 2018
Tips

Why Is Data Encryption on Employees' Mobile Devices So Important?

Setting up an office for an IT company the old-fashioned way requires more steps than you might think. First, every single employee must have a workstation set up and ready to go. Every computer needs a licensed... Read more

July 10, 2018
English
Loading...

Cyclonis Backup Details & Terms

The Free Basic Cyclonis Backup plan gives you 2 GB of cloud storage space with full functionality! No credit card required. Need more storage space? Purchase a larger Cyclonis Backup plan today! To learn more about our policies and pricing, see Terms of Service, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Cyclonis Password Manager Details & Terms

FREE Trial: 30-Day One-Time Offer! No credit card required for Free Trial. Full functionality for the length of the Free Trial. (Full functionality after Free Trial requires subscription purchase.) To learn more about our policies and pricing, see EULA, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Home

Products

Cyclonis Backup Cyclonis Password Manager Cyclonis World Time

Support

Help Files FAQs Downloads Inquiries & Support

Company

About Us Contact Us Report Abuse

Legal (Post Merger)

EnigmaSoft Limited (fka Cyclonis Limited)

Cyclonis Backup's Terms of Service Cyclonis Password Manager's EULA Cyclonis World Time's Terms of Service Privacy Policy Cookie Policy Special Discount Offer Terms Additional Terms & Conditions SpyHunter EULA RegHunter EULA EnigmaSoft Privacy Policy & Cookie Policy ESG Privacy Policy & Cookie Policy EnigmaSoft Discount Offer Terms ESG Discount Offer Terms

© 2017-2024 Cyclonis Ltd. CYCLONIS is a trademark of EnigmaSoft Limited (Cyclonis was merged into EnigmaSoft Limited effective November 25, 2023.) All rights reserved.

Registered Office EnigmaSoft Limited: 1 Castle Street, 3rd Floor, Dublin 2 D02 XD82, Ireland.
EnigmaSoft Limited, Private Company Limited by shares, Company Registration Number 597114.

Windows is a trademark of Microsoft, registered in the U.S. and other countries.
Mac, iPhone, iPad and App Store are trademarks of Apple Inc., registered in the U.S. and other countries.
iOS is a registered trademark of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
Android and Google Play are trademarks of Google LLC.