UBS Group AG, one of the world’s leading financial institutions, has confirmed that it suffered a data leak following a cyberattack on one of its external suppliers, Chain IQ. The incident, which came to light on Wednesday, June 18, 2025, resulted in the theft of information pertaining to over 130,000 UBS employees, though the bank assures that no client data was compromised.
Chain IQ, a procurement-services business spun off from UBS in 2013, was reportedly targeted by the hacker group World Leaks (formerly known as Hunters International). The ransomware attack led to employee data, including addresses and floor information, being published on the darknet. Notably, the direct phone number of UBS chief executive Sergio Ermotti was also reportedly compromised, as detailed by the Swiss newspaper Le Temps.
In a statement released on Wednesday, UBS confirmed the breach, stating: “A cyber-attack at an external supplier has led to information about UBS and several other companies being stolen. No client data has been affected.” The bank further emphasized its swift response, adding, “As soon as UBS became aware of the incident, it took swift and decisive action to avoid any impact on its operations.”
Chain IQ, which serves multiple companies beyond UBS, confirmed that it and 19 other entities were victims of the cyberattack, leading to the data leak. The company asserted that it took prompt steps and countermeasures, and that the situation has been contained. For security and investigative reasons, Chain IQ refrained from providing details on potential ransom demands or interactions with the attackers.
Another prominent Swiss private bank, Pictet, was also impacted by the same attack. Pictet confirmed that the leaked information was limited to invoice data from a few vendors over recent years and did not include any client information. “The information obtained through the cyberattack on Chain IQ systems does not contain any client data of Pictet,” the bank stated.
This incident underscores the growing vulnerability of supply chains to cyber threats and the critical importance of robust cybersecurity measures across all interconnected entities. Investigations into the breach are ongoing as both UBS and Chain IQ continue to implement necessary countermeasures to mitigate further risks.
Also read: Viksit Workforce for a Viksit Bharat
Do Follow: The Mainstream formerly known as CIO News LinkedIn Account | The Mainstream formerly known as CIO News Facebook | The Mainstream formerly known as CIO News Youtube | The Mainstream formerly known as CIO News Twitter |The Mainstream formerly known as CIO News Whatsapp Channel | The Mainstream formerly known as CIO News Instagram
About us:
The Mainstream formerly known as CIO News is a premier platform dedicated to delivering latest news, updates, and insights from the tech industry. With its strong foundation of intellectual property and thought leadership, the platform is well-positioned to stay ahead of the curve and lead conversations about how technology shapes our world. From its early days as CIO News to its rebranding as The Mainstream on November 28, 2024, it has been expanding its global reach, targeting key markets in the Middle East & Africa, ASEAN, the USA, and the UK. The Mainstream is a vision to put technology at the center of every conversation, inspiring professionals and organizations to embrace the future of tech.
