Cyber Incident Victim: Swiss Post Cargo Deutschland
Date:
Mar 2025
Location:
Germany
Summary
Swiss PostCargo Deutschland experienced a cyberattack that disrupted its IT systems in Germany, affecting approximately 1,600 business customers who rely on its logistics and transport services. The attack compromised local logistics, accounting, and personnel systems, leading to the exfiltration of data and potential access to personal information, prompting notification to German data protection authorities and filing of criminal complaints. While the company maintains operations through emergency procedures and increased staffing, IT experts work to restore affected systems, deploy replacements, and strengthen defenses against further incidents, while the parent company's ICT infrastructure in Switzerland and other countries remains unaffected.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
Sincelast week, Swiss Post Cargo Deutschland has been unable to access its IT systems normally. Investigations have identified a targeted cyberattack as the cause of the system outage. The attack affected local logistics, accounting, and personnel systems of Swiss Post Cargo Deutschland. The impact is most pronounced in the piece goods segment of the business. Approximately 1,600 business customers that use Swiss Post Cargo Deutschland’s storage and transport services are affected. Data covering the period 2020 to 2025 has been exfiltrated, and it cannot be ruled out that the attackers also gained access to sensitive personal data. A notification has been submitted to the competent German data protection authority and criminal complaints have been filed. The ICT infrastructure of the Swiss Post in Switzerland and other countries remains unaffected by the incident.
To continue serving customers, Swiss Post Cargo Deutschland has activated an established emergency concept, adjusting work processes and temporarily increasing staff numbers. The company is attempting to maintain operations despite the lack of normal IT support. IT specialists from the Swiss Post and from Swiss Post Cargo Deutschland are working intensively to restore the affected systems. They are also deploying replacement systems and strengthening the infrastructure against possible further attacks. Initial progress has been achieved in these efforts. However, a full return to regular operation is currently not fully foreseeable.