March 24, 2023,
On March 24, the hacker Group "Cl0p" announced on the Dark Net that sensitive Atos data has been compromised. We want to reassure our clients, suppliers and employees that this is not the case. No ransomware has affected any Atos IT system.
Our security experts have already concluded that no Atos IT environment has been compromised. The presumed leak is limited to a specific Nimbix file transfer application hosted on GoAnywhere MFT. According to our current investigation, we found that it was only processing standard data from Nimbix, a US company acquired by Atos in 2021.
Our cybersecurity team has identified a backup folder from 2016 that was presumably exposed, due to a zero-day vulnerability known to be exploited by Cl0p. We are in contact with the clients concerned.
We are continuing to actively monitor the situation and will provide further updates if there is any change to the information above.