CPH Group
| Primary URL | Location | Industry | cph[.]ch |
Country
Switzerland
|
Manufacturing
|
|---|
Profile
CPH-Gruppe, also known as CPH Group, is headquartered in Switzerland.
The organisation operates two principal divisions: a Paper and Packaging division and a Chemistry division.
The Paper and Packaging division focuses on the manufacture of paper‑based materials and a range of packaging solutions.
The Chemistry division is engaged in the production of chemical compounds that serve various industrial applications.
These divisions enable the group to supply products to both industrial manufacturers and consumer‑goods markets.
The Swiss headquarters coordinates overall strategy and supports the global footprint of the enterprise.
CPH Group maintains production facilities at the Perlen and Müllheim sites located in Switzerland.
Both sites are integrated into a global information technology infrastructure that connects operations worldwide.
Continuous monitoring of network traffic is performed by security systems installed at the Perlen location.
The monitoring capability is designed to detect anomalous activity that could indicate a cyber threat.
Upon detection of a potential incident, the organisation’s contingency plans authorise a controlled shutdown of the entire IT environment.
This shutdown is executed as a precautionary measure to prevent further propagation of any malicious code.
Backup systems are kept physically and logically separate from the primary network and have been verified to remain uncompromised during past events.
During the cyber attack identified on 7 January 2022, the Paper and Packaging divisions at Perlen and Müllheim were halted as a precaution while the Chemistry division continued operating without interruption.
This outcome illustrates a degree of operational segregation between the technology environments supporting the different divisions.
External cybersecurity specialists were engaged immediately to conduct forensic analysis and support restoration efforts.
The organisation’s predefined security protocols were activated as soon as the threat was confirmed.
Those protocols include steps to isolate affected systems, preserve evidence, and maintain communication with stakeholders.
Throughout the response, the backup systems remained untouched, allowing for a reliable recovery path once the primary network was cleared.
The episode highlighted the value of the group’s preparedness measures, including monitoring, contingency planning, and expert external assistance.