Investigation into ransomware attack on JobMotion completed: no personal data leaked
In December we reported that the payroll processing system used by JobMotion may have been the target of a ransomware attack. As soon as the incident was discovered, the supplier of the salary processing system engaged a specialised cybercrime company to conduct an investigation and carry out remedial work. The cyber specialists have now completed their forensic study and a positive conclusion can be drawn.
First and foremost, no personal data was misappropriated or accessed. The investigation showed that the attack was limited to one server within the entire environment. This server contained no data from JobMotion. Ultimately, it appears that, partly due to security measures taken, the attackers did not manage to gain access to any of the supplier’s other servers.
To prevent a further attack, the supplier of the payroll processing system has now taken a number of additional preventive measures, including new passwords and the installation of additional security software. Further security measures will be implemented in the coming period. The company will remain in contact with JobMotion regarding this.
Notification to Personal Data Authority
JobMotion reported the incident as a data leak to the Personal Data Authority in December. Based on the findings of the forensic investigation, this notification has now been withdrawn.
JobMotion remains in close contact with the supplier and with Leiden University regarding the security of the salary processing system. Involved individuals will be personally informed by Jobmotion.
If you have any questions regarding this incident, please contact the Leiden University helpdesk, which is available via 071 - 527 88 88 (option 4) of via email@example.com.