Security incident impacting parts of the IT environment

Company Announcement
HQ_Electric car & Buddinge building_1018 (19)
On 17 February 2020, ISS was the target of a malware attack. As a precautionary measure and as part of our standard operating procedure, we immediately disabled access to shared IT services across our sites and countries, which ensured the isolation of the incident.
The root cause has been identified and we are working with forensic experts, our hosting provider and a special external task force to gradually restore our IT systems. Certain systems have already been restored. There is no indication that any customer data has been compromised.
The nature of our business is to deliver services on customer sites mainly through our people and as such we continue our service delivery to customers while implementing our business continuity plans. Our priority is to ensure limited or no disruption while we fully restore all systems.
We are currently estimating when IT systems will be fully restored and are assessing any potential financial impact.
Security, in all its forms, is a top priority for ISS, and we remain committed to protecting the integrity of our systems.
We will provide a further update when we have significant, additional information.

For investor enquiries
Martin Kjær Hansen, Head of Group Investor Relations, +45 20 27 15 25
Daniel McKay, Senior Investor Relations Manager, +45 22 24 65 42

For media enquiries
Rajiv Arvind, Senior Communications Manager, +45 24 90 07 47
Kasper Ortvald Larsen, Communications Consultant, +45 25 77 62 77