Adif Data Breach (2020)

Cyber criminals have used the Windows REvil ransomware to attack Adif, an infrastructure company owned by the Spanish Government, and have published data which was stolen from its dark Web site. The attackers have apparently hit the organisation twice before, and threatened a third attack as soon as the data was published. "We advise you to get in touch immediately. We have personal information including correspondence, contracts and other accounting (total 800 gigabytes of data)," they said in a note posted online. "If you do not comply with our terms, your data will be published in the public domain. We will continue to download your data until you contact us," they added in surprisingly good English. According to its website, ADIF, the Administrator of Railway Infrastructure, is a state-owned company that answers to the Transport Ministry. The site said Adif played a leading role in promoting the railway sector, working towards converting it into the ideal mode of transport and facilitating access to the infrastructure under fair conditions.