The Fraunhofer Institute for Industrial Engineering IAO in Stuttgart has been the target of a ransomware attack on December 27, 2024, resulting in the impairment of certain systems and data. It is not currently possible to determine the precise extent of the damage.
Fraunhofer regrets the incident and has responded with a variety of actions. Current indications are that this is a local incident that only affects Fraunhofer IAO.
Security is a top priority for Fraunhofer, and Fraunhofer IAO is working closely with IT security experts and the investigating authorities to fully analyze the incident and take appropriate measures. Precautions have already been taken to limit further damage as far as possible. Fraunhofer is doing everything in its power to ensure that such incidents do not happen again.
Ransomware attacks may also compromise the protection of personal data. This is why we cannot rule out that personal data has been disclosed to third parties without authorization. Even though Fraunhofer IAO processes personal research data in a form that does not identify individuals, we cannot completely exclude that, in some cases, disadvantages could arise for those affected as a result of unintentional publication.
The Fraunhofer-Gesellschaft is closely monitoring developments and will inform those likely to be affected. Fraunhofer notified the Bavarian Data Protection Authority within the statutory period and the responsible security and police authorities as soon as the incident came to light. Fraunhofer IAO has already informed part of its partners.
Affected persons can contact Fraunhofer’s data protection officers at any time at datenschutz@zv.fraunhofer.de.
Fraunhofer is working closely with the investigating authorities. We ask for your understanding that we cannot provide further details at this time for tactical reasons relating to the investigation.
Fraunhofer-Gesellschaft