A cyber security incident on Nov. 19 forced Vestas to shut down IT systems across multiple business units and locations to contain the issue.
The Danish company said it was able to continue operations but that data had been compromised.
“The hackers managed to retrieve data from the compromised internal file share systems and have made some of the compromised data public,” Vestas said in a statement.
It added that the majority of compromised data includes personal information such as names, contact details, and CVs but also some cases of more sensitive information such as social security numbers and bank account information.
“Due to the potential risk caused by the leak of personal data, Vestas encourages all employees and business partners to continue to stay vigilant of any indications of misuse of their personal data,” it said.
Ransomware, which has dominated cybersecurity threats this year, encrypts victims’ data and can include locking down an organization’s network or stealing data.
Typically hackers will offer the victim a key in return for cryptocurrency payments that can run into hundreds of thousands or even millions of dollars.
Crypto ransomware payments Most often, threat actors demand ransomware payments in cryptocurrency because this form of payment provides anonymity for the destination address associated with the ransom demand. Unlike bank accounts, no personally identifiable information is required to obtain a crypto wallet.
The illicit financial transactions underpinning ransomware attacks have been taking place with digital money known as cryptocurrencies, which the U.S. government is still determining how to stop.