SAC Wireless, a US-based Nokia subsidiary has disclosed a data breach following a Conti ransomware attack.
The company said it detected the intrusion on June 16, 2021.
“On June 16, 2021, SAC Wireless became aware that certain aspects of our internal technology infrastructure may have been accessed by an unauthorized third-party as part of a ransomware attack. The threat actor, Conti, gained access to the SAC systems, uploaded files to its cloud storage, and then, on June 16, deployed ransomware to encrypt the files on SAC systems,” SAC Wireless said in a data breach notification letter.
The Nokia subsidiary said it is still trying to determine what information was affected, but it said it believes that the files impacted by the incident may include data related to current and former SAC Wireless employees, such as name, date of birth, contact information (home address, email, and phone), government ID numbers (driver’s license, passport, or military ID), social security number, citizenship status, work information (title, salary, and evaluations), medical history, health insurance policy information, license plate numbers, digital signatures, certificates of marriage or birth, tax return information, and dependent/beneficiary names.
In a message on their darknet leak site the Conti ransomware group claimed to have stolen over 250 GB of data from SAC Wireless and threatened to publish all the stolen files online if the company doesn't pay the ransom.