Cyber Incident Victim: EAS Change Systems

On February 26, 2024, EAS Europe experienced a ransomware attack that compromised its server infrastructure. Attackers successfully encrypted the organization's servers, rendering critical systems inaccessible and disrupting normal business operations. The incident potentially involved unauthorized access to sensitive data stored on EAS servers, with specific concern expressed regarding customer and supplier information that may have been exfiltrated during the breach. This operational disruption necessitated the complete shutdown of EAS Europe's Netherlands-based operations to facilitate recovery efforts. The company prioritized restoring systems from backups to regain functionality, indicating that backup integrity allowed for this recovery path. While immediate operational impacts centered on service delays, the potential exposure of sensitive third-party data introduced additional risks beyond business continuity concerns.

EAS Europe initiated a coordinated response involving collaboration with an external cybersecurity firm to conduct a comprehensive assessment of the incident's scope and implement enhanced protective measures. This partnership focused on both incident analysis and strategic improvements to cybersecurity defenses and data protection protocols. Organizational leadership, represented by CEO Vincent Nijzink, issued direct communications warning stakeholders against potential secondary contact attempts by threat actors, explicitly advising against responding to any unsolicited requests regarding financial data or bank account changes purporting to originate from EAS. The company established verified communication channels, directing inquiries to designated contacts or their headquarters telephone line (+31 318477010), while maintaining transparency regarding ongoing recovery processes. Operational restoration efforts remained prioritized alongside continued investigation into the full extent of data exposure resulting from the breach.