Pohjola Group Data Breach (2014)

OP suffered from a denial-of-services attack on New Year's Eve OP's services experienced some problems on New Year's Eve due to data communications disruptions. The disruptions were caused by a denial-of-services attack. The attack flooded OP's data communications systems and prevented customers' banking. During the disruption, online services were not available and cash withdrawals could not be made from ATMs. There were also some difficulties in card payments. The disruption was detected at about 16.30 on New Year's Eve. The services started to function again at times and were completely restored and available to customers after midnight. Nevertheless, further disruptions are possible as the corrective measures are still ongoing and the security level of data traffic has been raised for the time being. Customers abroad may still have difficulties in logging in to OP's online services. Cards are functioning abroad. For the time being, the identity of the attacker is not known. OP's website was subject to exceptional malicious traffic from both abroad and Finland. OP's experts are investigating the situation in cooperation with the authorities, service company Tieto, responsible for OP's data communications, as well as operators. OP has submitted a report on an offence on the denial-of-services attack to the police, and the National Bureau of Investigation is investigating the matter. - We are truly sorry about the disruption that bothered our customers on the last day of the year. The attack prevented the use of online services and, to some extent, cards as well. Customers experienced the attack by not being able to access our services, says CFO Carina Geber-Teir.