A critical NATO cloud platform was compromised

A cybercriminal gang has confirmed, after its ransomware cyberattack against Everis company and by means of a ransom note shared with DDoSecrets, to have compromised the cloud platform called Service-Oriented Architecture and Identity Access Management (SOA & IdM). A platform used by NATO for the development of its Polaris programme and whose information was stored on a server of one affected Latin American subsidiaries of Everis.

The security incident occurred last May of this year and its authors affirm that they allegedly have backups, have deleted backups from the company and may modify platform source code.