Cyber Incident Victim: Boost

On Sunday, January 19, 2025, malicious actors targeted Boost, a subsidiary of Ilem Group, with a cyberattack accompanied by a ransom demand. The attackers attempted to compromise Boost's systems and disrupt its services, directly impacting 15% of the company's client base, which consisted of over 200 organizations. The intrusion caused operational disruptions affecting client environments, though the specific systems compromised were not disclosed. Boost's cybersecurity teams immediately activated incident response protocols upon detection, initiating containment measures to prevent further spread. Within the first three days of the attack, restoration efforts successfully recovered systems for more than 70% of the affected clients. The company did not disclose whether data exfiltration occurred or if the ransom was paid, focusing instead on service restoration and client support.

Boost implemented immediate protective measures to harden its infrastructure against future attacks, including enhancements to protection systems and internal processes. The organization provided proactive assistance to impacted clients to maintain business continuity and minimize operational consequences. Collaboration with external cybersecurity experts and law enforcement agencies—specifically the Geneva police and federal police—was established from the onset of the incident. Ilem Group emphasized transparent crisis management throughout the response, acknowledging the heightened risks facing the sector. Client communications highlighted gratitude for stakeholder understanding during the disruption, though technical details regarding the attack vector, malware used, or ransom amount remained undisclosed. Restoration timelines for the remaining 30% of affected clients were not specified in the available reporting.