Massive Cyberattack Exposes Thousands of Personal Records in Iceland

2026-02-14 - 22:58

A cyberattack on the Grund nursing home system has led to the leak of sensitive information regarding tens of thousands of individuals. As reported by RÚV, the breach, which took place in December, is being investigated by Europol, Interpol, and other agencies, including Iceland’s cybersecurity team, Cert-IS. What's the Story? Cyberattack on Grundrheimil system (December 2025) Data on patients, staff, and relatives of Grundar Homes exposed Investigated by Europol, Interpol, Cert-IS, Icelandic Data Protection Authority Photo: isat.is Hackers gained access to the servers of the care home Grund, which holds data on patients, staff, and their families. Anton Már Egilsson, CEO of Icelandic cybersecurity firm Syndis, confirmed that the stolen data spans many years. The attack caused significant disruption, affecting the operations of the entire organisation. While the precise identity of the hackers remains unknown, early signs suggest a ransomware attack, often aimed at extorting money by threatening to leak sensitive information. No ransom demand has been made yet, a situation which Egilsson attributes to the swift response from the investigation teams. “We acted quickly to stop the attack and prevent further damage,” he said. Authorities have urged the public to remain vigilant for any misuse of the stolen data.