Cyber Incident Victim: Swiss Cloud Computing AG

Swiss Cloud Computing AG, a provider of cloud services for independent software vendors and ICT resellers in Switzerland, experienced a ransomware attack in late April 2021. The attack occurred approximately one week before April 27, when media coverage first emerged, though the exact intrusion timeline remains unspecified in available reports. The incident disrupted the company's operations and affected approximately 6,500 customers who relied on its cloud infrastructure. While the ransomware variant was not publicly identified, the attack caused significant service outages that rendered Swiss Cloud's website inaccessible to external visitors at the time of initial reporting. The company acknowledged the breach through public statements, confirming the involvement of ransomware but withholding technical details about the attackers' methods or any ransom demands.

Swiss Cloud Computing AG initiated recovery efforts immediately following the attack, engaging specialists from Hewlett Packard Enterprise (HPE) and Microsoft to assist with server restoration. Restoration work continued through the weekend of May 1-2 in 24-hour shifts, with the company committing to provide further status updates by Monday, May 3. The organization projected service restoration for the week beginning May 3, though no specific completion date was confirmed in the available reporting. Customer impact persisted throughout the outage period, with no details provided about data compromise beyond service disruption. The company's public communications focused exclusively on technical recovery efforts, without disclosing operational contingency measures or forensic findings regarding the attack's origin. Service availability remained partially impaired as of April 27, evidenced by the continued inability to access Swiss Cloud's primary website.