Data breach at major Swedish software supplier impacts 1.5M

Sweden woke up to a digital hangover: Miljödata, the IT supplier powering about 80% of municipalities, got hit. Attackers stole data, demanded 1.5 Bitcoin, and later the Datacarry gang posted a 224MB trove on the dark web. The state jumped in fast—CERT-SE and police investigating, privacy watchdog IMY saying up to 1.5 million affected, while Have I Been Pwned puts it closer to 870,000. Disruptions hit regions across the map, from Halland to Gotland to Karlstad. The plot twist? The comments section turned into a street fight. One faction is furious, pointing to risks for kids’ records and people with protected identities, and calling this a GDPR (Europe’s privacy law) nightmare. Another faction shrugs: in Sweden, lots of this stuff is already public—salaries, credit ratings, criminal history, addresses, even who owns which cars—so what’s new? Meanwhile, builders are catching heat: one commenter says governments must fund secure programming like roads and bridges—no more leaky code. There’s gallows humor too: 1.5 BTC got roasted as “used Volvo money,” while others argue “public” isn’t the same as “packaged for scammers.” IMY is zeroing in on Miljödata and key municipalities like Gothenburg next. Full backstory via BleepingComputer.