Intruders secured access to a PSA employee’s e-mail account in the second week of August, and used it to distribute large quantities of phishing mail.
The attack was quickly detected and halted, but information from the hacked e-mail account may have been copied.
Together with its service provider and an external security specialist, the PSA has reviewed the incident to ensure that no other parts of its IT environment have been compromised.
The PSA works continuously with the Norwegian security authorities and its service provider to maintain IT security and the alertness of its employees.
In the wake of this incident and in consultation with its service provider, the PSA has raised the level of security for certain services even further.