Visma

Visma is a European software company headquartered in Norway. It develops and delivers cloud-based business solutions, including enterprise resource planning, accounting, payroll, and human‑resources software. These products are designed to help organisations automate core administrative and financial processes. Visma serves a broad range of customers, from small and medium‑sized enterprises to larger corporations, across various industries. The company’s offerings are available in multiple European markets, reflecting its regional focus. Its software is typically offered as a service, allowing customers to access updates and support remotely.

Visma distinguishes itself through its concentration on integrated cloud platforms that combine several back‑office functions into a single user experience. The firm has built a reputation for supporting local regulatory requirements, particularly in the Nordic countries where it originated. In February 2019, Visma was targeted by the Chinese‑linked APT10 group as part of the Cloudhopper campaign, which used stolen credentials to attempt to access client secrets. Security researchers attributed the intrusion to China’s Ministry of State Security, noting the attackers sought to exploit Visma’s position in the supply chain. Early detection of the breach limited the attackers to the firm’s own network, and Visma confirmed that no client systems were compromised. The incident highlighted the risks that service providers face from sophisticated espionage groups and underscored the importance of monitoring privileged access. While the breach did not result in downstream harm, it remains a notable example of the cyber‑threat landscape affecting European software vendors.