At the first glance at the event when announced that Gunnebo had its IT system breached, it did not really surprised me as there a several groups (ideologists, terrorists, criminals, state sponsored and so on) out there more than capable to breach most IT systems.
But when the followup announced that tens of thousands documents had been stolen and many of them related to security installations and blueprints of government buildings, we where flabbergasted of the situation. Not only because of the utterly embarrassing event, but also that Gunnebo was warned in March 2020 by KrebsOnSecurity that its network breached by hacker who sold the access to a criminal group and secondly that such a sensitive information was stored on a system accessible from outside.
Further to this according to KebsOnSecurity apparently an employee had setup an RDP to access the company remotely which is clearly a breach of company protocol and procedures and never discovered until too late.
We strongly recommend that Gunnebo Group is in the need of a serious security audit, not only of its IT security but also of their processes and procedures to tighten the overall security, which we would be more than happy to help them with.
Peter Lundberg-Isaksson
CEO an2sec AB
An2Sec AB 