A cyberattack on UBS’s external vendor Chain IQ has led to the leak of personal data belonging to tens of thousands of employees, though client information remains secure.
Highlights:
- A cyberattack on Swiss vendor Chain IQ resulted in the leak of personal data from over 130,000 UBS employees.
- The stolen data, including sensitive contact details, was published on the darknet, but no client data was compromised.
- UBS and other affected firms, including Pictet, have taken swift action to contain the breach and secure operations.
Summary: Swiss banking giant UBS has confirmed a significant data breach following a cyberattack on its external service provider, Chain IQ. The attack led to the exposure of personal information from tens of thousands of UBS employees, including reportedly sensitive contact details. The compromised data was posted on the darknet, raising concerns about third-party cybersecurity vulnerabilities.
UBS emphasized that no client data was affected and that immediate measures were taken to mitigate the impact. The breach also impacted other firms, including Swiss private bank Pictet, highlighting the broader risks posed by supply chain cyber threats.
