From Crisis to Insight: Building a More Secure Digital Public Sector

From Crisis to Insight: Building a More Secure Digital Public Sector

On August 23, Sweden was hit by one of the largest data incidents in modern history. The attack on Miljödata directly affected hundreds of municipalities and organizations, and several weeks later they are still dealing with the consequences. According to SVT, hundreds of thousands of employees’ personal data—names, addresses, personal identity numbers, and contact information—were stolen and leaked in what has been described as one of the most serious breaches to date.

Responses have varied. Some municipalities acted quickly and informed their employees, while others waited for central guidance or struggled with uncertainty about the scope. Even though technical systems could be restored relatively quickly, forensic analyses are taking longer. According to Sveriges Radio, many employees remain worried about how their data might be misused, for example for fraud.

Building Security from the Start

The attack highlights a major weakness in public digitalization: cybersecurity is often treated as something that can be added later rather than designed from the beginning. This is where the concept of secure by design becomes essential.

Secure by design means that security is built in from the outset—in system architecture, in the software code, and in the processes that govern its use. It is like building a house where fire alarms, sprinklers, and emergency exits are drawn into the blueprint, not added after the first fire.

In the Miljödata case, several principles could have made a difference:

  • Multi-factor authentication as default: Attackers would not have gained access with just a stolen password. An extra layer of security would have stopped or delayed the intrusion.
  • System segmentation: If systems had been divided into separate parts, a single entry point would not have automatically provided access to all data. The breach would have been far less extensive.
  • Minimal data collection: By only storing the data truly needed, the volume of sensitive information stolen would have been reduced.
  • Encryption as a baseline: If data had been encrypted both at rest and in transit, it would have been useless to attackers even if files were obtained.
  • Automated incident reporting: Systems that trigger alerts on unusual activity could have shortened the time between attack and response, limiting the spread.
  • Exercises to uncover dependencies: Simulating incidents, for example through tabletop exercises, helps organizations discover critical supply chain dependencies and set clearer requirements for security and follow-up.

In short, secure by design is about building in barriers, safeguards, and safety nets so that a breach cannot have devastating consequences.

Expert Knowledge Early in the Process

The Miljödata attack clearly shows why cybersecurity experts must be involved already in the planning phase. According to Sveriges Radio, several basic routines failed, such as multi-factor authentication and incident reporting. If experts had been part of the process from the start, threat modeling, risk analysis, and technical design choices could have prevented the weaknesses that were exploited.

Complex supply chains also mean that a single weak link can jeopardize the entire system. That was exactly what happened here, as one central supplier became a vulnerability for hundreds of municipalities.

From Reactivity to Resilience

The past few weeks have shown that faster information flows and clearer allocation of responsibility are important, but not sufficient. According to Dagens Samhälle, political initiatives are needed to raise IT security standards. At the same time, a culture of security must be fostered, where security considerations permeate the entire lifecycle—from planning and development to operation and maintenance. Regular incident exercises, from simple tabletop scenarios to more comprehensive simulations, are essential. They help identify both technical and organizational weaknesses in advance and train organizations to act quickly and in unison to limit damage when an attack occurs.

Cyberattacks will continue to happen. The question is whether our systems are built to withstand them, and whether organizations can respond with resilience rather than panic.

Conclusion

The Miljödata attack is still highly relevant. It shows what happens when digitalization moves faster than security. The key takeaway is that cybersecurity cannot be treated as a side issue. It must be integrated into system design, organizational culture, and political decision-making. Involving cybersecurity experts early, designing systems according to secure by design, regularly practicing incident response, and strengthening supply chains are not just technical measures—they are crucial steps to protect both employees and citizens in a digital era.

For those who want to dive deeper into how organizations can embed security directly into their systems and processes, we recommend downloading our e-book Securing the Future: The Role of Cybersecurity in Product Development.

Work at HiQ

Get in touch!

Choose your nearest office, looking forward to hear from you!

Read more articles here

insight New Cybersecurity Act: What You Need to Consider Now
insight When Business Logic is Built in Code – A Conversation with HiQ’s CEO on Agilpodden
insight Software Development in the Public Sector 2025: Digital Transformation, Data Modernisation and Collaboration in Practice
insight Cybersecurity in the Public Sector 2025: Offensive and Defensive Strategies
insight The EU’s AI Reset Is the Right Path to Safeguard Europe’s Responsible Competitiveness
insight Public Sector 2025: AI as a Force, Compass and Catalyst
insight When AI Meets Cybersecurity: From Risk to Opportunity
insight Atlassian Rovo: AI as the Hub of Future Collaboration
insight Part 2: Social Engineering and Cyber Threats: The Return of the Human Factor
insight Part 3: Platformisation and Digital Resilience: Business Strategy on Cloud Terms
insight Part 1: AI and the Competence Shift: Ready for the Next Big Leap?
insight Windows 10 Support Ends – How It Affects Businesses and What You Need to Do Now
insight Meet Laura Vantellini, HiQ’s new Managing Director in Germany 
insight Digitalization, AI and the Future of Sweden – A Conversation with Minister for Civil Affairs Erik Slottner
insight Customer data is the new gold – and hackers are already digging
insight Quantum Computers and Cybersecurity – From Future Threat to Strategic Reality
insight New Report Shows How We Use ChatGPT: Like Buying an iPhone and Only Using the Flashlight
insight The Cyber Landscape 2020–2025: From Pandemic Shock to AI-Driven Threats
insight AI sets a new standard for banks’ fraud prevention
insight When Nature Strikes: How AI Can Protect the Energy System from the Next Crisis
insight AI makes Jira the developer’s new assistant
insight Only Five Percent Succeed with AI – How to Avoid Being Among the Losers
insight From Frozen Firmware to Adaptive Intelligence: Embedded Software Is Changing the Game
insight Edge AI: Intelligence Moving into the Systems
insight Digital Resilience – The Next Competitive Advantage
insight From Docker to Kubernetes – The Story of How We Build the Next Generation of Digital Ecosystems
insight The 11 Hottest AI Agents of 2025 – and How They’re Already Transforming Business
insight AI Experiences from a Developer’s Everyday Life – How to Use AI for Coding
insight From Data to Agency: Navigating the AI Maturity Path to Agentic Systems
insight What Does “Developer Experience” Really Mean – and Why Should the Business Side Care?
insight The Future of Development: What State of Software 2025 Reveals About Tomorrow’s Tech Roles
insight From Model Year to Always Up-to-Date – How Software Is Redefining the Car’s Lifecycle
insight AI in the Power Grid – From Vision to Real-World Application
insight Efficiency Without Shortcuts – How to Get More Out of Every Step in the Development Cycle
insight Interview with Ashkan Fardost: Why We Must Understand Technology as Something Deeply Human
insight Towards a Data-Driven Future: Falu Energi & Vatten’s Strategic Journey
insight Confident in Swedish – A Language Initiative that Builds Courage and Connection
insight Java on Cloud Terms – Best Practices for AWS, Azure, and GCP
insight Building a Tech Industry Where Everyone Feels at Home
insight Spring Boot, Quarkus or Micronaut? Your Guide Through the Java Framework Jungle
insight AI – The Manufacturing Industry’s Shield Against the New Reality of Trade Tariffs?
insight How to Build Change-Resilient Teams – with Annika R Malmberg on Tech Royale
insight Vibecoding vs. DevOps: The Future of Software Development in the AI Era?  
insight From Threads to Thousands – How Virtual Threads Are Transforming Java Development
insight How Companies Can Implement the POUR Principles in Their Digital Strategy Ahead of the EAA
insight Everything You Need to Know About Digital Accessibility Before June 2025
insight How Young Professionals Can Prepare for the Future of DevOps
insight Why CxOs Should Care About the Future of DevOps
insight The Trends Shaping DevOps in 2025
insight “We Must Prepare for an Increasingly Complex Threat Landscape”
insight DeepSeek and the AI Arms Race – What Does It Mean for Sweden?
insight Unlearning for DevOps Teams: A Key Skill for the Future
insight DevOps and AI: Building Systems That Learn and Adapt
insight Insights on Leadership and Partnerships in Tech with Simona Bamerlind
insight How to Lead a Tech-Forward Organization – Insights from Ledarlabbet
insight Understanding CRA: A Path to Competitive Advantage
insight Figma’s Dev Mode: A Hands-on Guide
insight Exploring AI, Cybersecurity, and the Future of Intelligence with Staffan Truvé
insight How to Avoid Common AI Project Pitfalls
insight Cybersecurity in Focus This October: How We Can Create a Safer Digital Society
insight Understanding PSD3 and PSR: Why They Matter and What You Need to Know
insight Open Banking and the API Economy: Drivers of New Innovation in Finance
insight The Swedish Financial Infrastructure from a Tech Perspective
insight Five Keys to IT and Tech-Driven Innovation – Insights from Radar Talk
insight The Rise of Autonomous Vehicles: Revolutionizing Transportation
insight AI and Sustainability: Opportunities, Challenges, and the Way Forward
insight AI – From Data to Business Decisions 
insight How HiQ Helps You and Your Business
insight What Happens if Your Software Fails?
insight Skip Projects & Pi in Software Development
insight Four Expert Tips on Business Value with GAI
insight How well do we really understand children’s digital preferences?
insight Mastering Industrial IoT
insight NIS2 – Not Just for Critical Functions
insight Navigating the AI Revolution
insight Unlocking Your Data Goldmine
insight AI Adoption in Nordic Energy and Manufacturing
insight Emerging AI Infrastructure
insight The Nordic AI Race