Overview

• Volvo said the compromise stems from Miljödata’s August 20 ransomware incident, which was identified by the vendor on August 23 and disclosed to Volvo on September 2.
• The DataCarry group claimed the attack and published files on a Tor leak site, with Have I Been Pwned indexing about 870,000 affected accounts and listing extensive personal information types.
• Volvo’s letter filed with the Massachusetts Attorney General confirms exposure of employees’ names and Social Security numbers and states Volvo’s own systems were not breached.
• Impacts extend across roughly 25 companies, about 200 Swedish municipalities, and multiple universities that rely on Miljödata’s Adato and Novi platforms.
• Volvo is offering 18 months of Allstate Identity Protection Pro+ to affected individuals, as Miljödata investigates with cybersecurity experts and strengthens its hosted environment.