Unknown hackers target German newspaper giant in mid‑July breach
MUNICH, One of Germany’s largest newspaper publishers, Südwestdeutsche Medienholding (SWMH), has confirmed it was hit by a “critical IT security incident” that briefly gave attackers access to its internal network.
The company, which owns the influential daily Süddeutsche Zeitung as well as the Stuttgarter Zeitung and Stuttgarter Nachrichten, said the intrusion occurred over the weekend of 12 to 13 July and affected every subsidiary connected to the central network. SWMH employs about 4,500 people and publishes dozens of titles across the country.
According to a statement released on Tuesday, technical teams detected unusual activity soon after it began and implemented extensive defensive measures at the start of the following week. The attack was halted quickly and production systems, online reporting and print editions continued without disruption. No details were given on the type of malware used or whether any data was copied or encrypted.
The publisher has informed the Bavarian cybercrime police unit and is working with external security specialists to investigate. “We are cooperating closely with law enforcement and data‑protection authorities to identify the perpetrators and strengthen our cyber defences,” the statement said.
Germany has seen a steady rise in cyberattacks targeting both private companies and government bodies in recent years, many of which security agencies have attributed to actors linked to Russia or China. The incident at SWMH follows a series of ransomware assaults on regional administrations, universities and hospitals, underlining the vulnerability of essential services to digital intrusion.
Cybersecurity analysts note that media organisations are attractive targets because they manage large volumes of sensitive information and rely on round‑the‑clock IT systems. While SWMH appears to have avoided serious disruption, experts warn that attackers often revisit previously breached networks. Forensic work is expected to continue for several weeks to determine the full scope of the incident and whether customer or employee data was compromised.
Readers of Süddeutsche Zeitung and other SWMH titles are unlikely to notice any immediate impact, but the company said it will keep staff and partners informed as new findings emerge.
Photo Credit: DepositPhotos.com