"Recently, we discovered a vulnerability in a standalone test system, specifically in the file transfer software from the external supplier Cleo. As a result, some records containing sensitive personal data of one public domain customer were compromised. This did not impact other customers.
The majority of the data involved is test data and data necessary to run the Cleo VLTrader software. Forensic investigation by independent external specialists has determined that no other systems, such as production systems, were affected and that there was no ransomware involved. It was also established that it only concerns this set of test data from which no further personal data can be derived.
Of course, immediately after the indication of the potential danger, we took additional measures to prevent recurrence."