Sats data leaked on darknet after hacker attack

Gym chain Sats has confirmed a data breach affecting employees and members after a mid-March cyberattack. Sensitive HR data and member information have surfaced on the darknet, according to IT expert Karl Emil Nikka. The company is still investigating the full scope.

Gym chain Sats faced a hacker attack in mid-March. Initially deemed limited, the breach later appeared more extensive. On Wednesday, Sats reported that hackers accessed an internal shared storage server mainly used for accounting. Documents there included member names, contact details, and for some, additional personal information. Employee personal data also leaked.

CEO Sondre Gravir expressed regret in a statement: “Att information om anställda och medlemmar har påverkats är olyckligt. Vi beklagar konsekvenserna av detta brott.” Nordic PR chief Kristin Fjeld said a group of employees is affected and will be contacted directly, but exact figures await confirmation from the investigation. The incident has been reported to police.

IT security specialist Karl Emil Nikka from SSF Stöldskyddsförening discovered on April 1 data on over 10,000 registered users on the darknet, including names, postal addresses, phone numbers, and member numbers. Sensitive HR information such as termination agreements and investigations involving staff also leaked. “Bland de anställda så har det läckt ut betydligt värre saker,” Nikka said.

The attack comes from a hacker group active since summer 2025, which extorts hundreds of organizations by threatening to publish stolen data unless paid. Sats urges reliance solely on official information as the investigation continues.

Artigos relacionados

A hacker known as Rootboy has begun daily data dumps from Standard Bank's systems on the dark web since 14 April, following the bank's refusal to pay a 1 Bitcoin ransom. The attack, which started on 27 February, exfiltrated 1.2TB of data from Standard Bank and Liberty. The bank has confirmed exposure of some credit card details but no CVV numbers.

Reportado por IA

Inditex, the textile group behind Zara, disclosed on Wednesday night an unauthorized access to internal databases hosted on a third-party provider's servers. The company states no customer personal data, such as names, phones or credit cards, was compromised. Operations remain fully unaffected.

Libraries in Dalarna were hit by a data breach on June 3 that affects all borrowers.

Reportado por IA

Tata Electronics has confirmed a data breach after hackers claimed to have stolen a large database containing files related to Apple and Tesla.

quinta-feira, 18 de junho de 2026, 00:38h

Massive Fortinet breach exposes credentials of major organizations

quarta-feira, 17 de junho de 2026, 01:44h

Salesforce breach exposes Infinite Campus staff records

sexta-feira, 05 de junho de 2026, 17:37h

DentaQuest confirms cybersecurity incident after data surfaces

sábado, 16 de maio de 2026, 14:36h

Belambra hit by data breach after Pierre and Vacances

segunda-feira, 20 de abril de 2026, 23:12h

Gagnef tightens security after password leak

sábado, 11 de abril de 2026, 16:16h

Rockstar Games confirms limited data breach after hacker ransom demand

Este site usa cookies

Usamos cookies para análise para melhorar nosso site. Leia nossa política de privacidade para mais informações.
Recusar