Strong Cyber Attack Hits Securitas Direct: What We Know So Far
Joel Basanta
In October 2025, the matrix of Securitas Direct (brand under the umbrella of Versure) has been the target of a cyberattack with serious data breach, just one week after its stock market debut in Sweden. This event has generated great concern both for its customers and for the markets. In this post, we analyze what is known so far, the possible impact, previous context, risks and recommended measures.
What has been reported so far
Some of the confirmed or widely reported facts:
Swedish security forces have launched an investigation into blackmail and serious data breaches linked to the attack, although so far they have not identified specific perpetrators.
The leak would have compromised Sensitive customer information, although the media have not released precise details of the volume of data or the exact types of information affected.
The incident occurred just after the parent company went public in Sweden, adding media and financial pressure to the crisis.
In 2022, there were previous leaks related to the company Securitas (not specifically “Securitas Direct”), such as the exposure of millions of files in a misconfigured AWS repository.
Verture (owner of the Securitas Direct brand) is a company with a large presence in Spain, with millions of customers, and its IPO has been announced with a very ambitious valuation (over 20 billion euros)
Context and Background: Structural Risks
To better understand what Securitas Direct/Verture might be facing, you should consider the following background:
Prior data exposure In 2021, Securitas was discovered to have an unauthenticated Amazon S3 bucket, exposing 3 TB of data containing airport worker information, names, IDs, and other personal data.
Nature of the business Alarm and security companies such as Verisure/Securitas Direct handle a large amount of sensitive data (addresses, customer histories, biometric data, credentials, camera images, etc.). This makes them attractive targets for attackers.
Trading and public visibility Making a recent debut in the stock market involves increased public scrutiny, legal/regulatory pressure, and reputational vulnerability to security incidents.
Technology dependency and external suppliers Many modern companies rely on third parties (cloud services, subcontractors, billing providers), which introduce indirect risk vectors (supply chain attacks).
Possible impacts and risks
This type of cyberincident can have multiple negative effects, including:
Loss of trust Customers could question the reliability of the company and migrate to competitors.
Regulatory sanctions In Europe, under the GDPR and similar laws, the leak of personal data can result in large fines if diligence is not demonstrated in protection and notification.
Legal liability and lawsuits Affected individuals or entities could sue, seeking compensation for misuse of data.
Remediation and reputation costs Responding to the incident requires technical (digital forensics, containment, patches, audits) and communication (crisis management, public relations) efforts.
Impact on market value An event of this magnitude can affect the valuation of the company, generate sales on the stock market or raise questions among investors.
Is your company ready to face digital extortion and reputational pressure?
At Apolo Cybersecurity, we carry out audits, crisis plans and advanced training to anticipate and contain risks in the current environment.
%402x.svg){kind=icon}
.webp)