– We take this incident very seriously. DSS works closely with the National Security Agency and the police. They have implemented a number of measures to deal with the attack, and we are following the situation closely, says Municipal and County Minister Sigbjørn Gjelsvik (Sp).
The Minister for Municipalities and Provinces will brief the Parliament’s Foreign Affairs and Defense Committee on the matter.
– It is important to stress that government business is going on as usual. DSS has initiated a number of security measures to secure information on the ICT platform. Additional security measures may be necessary. Jelsvik says this will be evaluated on an ongoing basis.
Established a crisis task force
DSS has formed a crisis team and is investigating and handling the incident with assistance from the National Security Agency (NSM) and other security environments.
– We have discovered a previously unknown vulnerability in the software of one of our vendors. This vulnerability was exploited by an unknown actor. We have now closed this vulnerability. It is too early to say anything about who was behind the attack and the extent of the attack. Our investigations and police investigations will be able to provide more answers, says Eric Hope, director of the Departmental Security and Services Organization (DSS).
The incident has been reported and the police are investigating it. The Norwegian Data Protection Authority has been notified.
Parliament will be informed
– We are following the situation closely, says Municipal and County Minister Sigbjørn Gjelsvik (Sp) to NTB.
He will brief the Norwegian Parliament’s expanded Foreign Affairs and Defense Committee on the matter.
– It is important to stress that government business is going on as usual. DSS has initiated a number of security measures to secure information on the ICT platform. Additional security measures may be necessary. Jelsvik says this will be evaluated on an ongoing basis.
Krypo investigator
Kripos said on its website that it is investigating the data attack.
– However, we are at a very early stage in the case, and such an investigation is hard work that will take time, and we ask for your understanding that at this time we cannot share more information about the case, for the sake of further investigation, says Krepos.
no entry
DSS has initiated a number of security measures. The result of one of these security measures was that staff in the twelve ministries now cannot access the DSS’ shared mobile services. This applies to email, among others. Employees can still work as usual on their computers in the office or at home.
– We monitor systems continuously, and provide further actions if necessary. For the investigation, we cannot provide more information at this time, says Eric Hope.
The DSS ICT platform is used by all ministries except the Prime Minister’s Office, Ministry of Defence, Ministry of Justice and Emergency Preparedness and Ministry of Foreign Affairs.
“Web specialist. Lifelong zombie maven. Coffee ninja. Hipster-friendly analyst.”
