IT services giant Sopra Steria has been downed by the Ryuk ransomware group.
Sopra Steria, which runs a joint venture with the UK Department of Health to provide services such as accounting, payroll and managed IT to NHS organisations said the attack happened on Sopra Steria’s IT network on the evening of 20 October.
“The Group’s teams are working hard for a return to normal as quickly as possible and every effort has been made to ensure business continuity. Sopra Steria is in close contact with its customers and partners, as well as the competent authorities.”
French media reports claim the company has fallen victim to Ryuk ransomware. The ransomware hit Sopra Steria’s Active Directory infrastructure has encrypted portions of the company’s network.
For those who came in late, Sopra Steria has a specialised cyber security brand.
The company is also one of the founding members of France’s Cyber Campus, an industry-led initiative to spread cyber security awareness, training and product sales.
Security analyst Graham Cluley said: “Although it might be easy for those unaffected to be bemused by the irony of a company like Sopra Steria being hit by ransomware, it’s really a reminder that any organisation could potentially fall victim to a determined attack. All companies, big and small, need to be on their guard and put defences in place to reduce the chances of becoming the next victim.”
