Dovre Group Plc Press release September 29, 2023 Dovre Group´s Norwegian operations have been attacked by ransom virus

Dovre Group Plc Press release September 29, 2023, at 3.30 pm

Dovre Group´s Norwegian operations, i.e. Dovre Group Energy and Dovre Group Consulting, have been attacked by ransom virus at one of our servers in Stavanger

We are working closely together with our IT-partner on our contingency plan and are already up and running on safe email and basic office systems. The server involved contains part of our financial systems and operational directories. The impact for our consultants and clients is limited as the majority of our consultants in Norway are working within our clients´ organization, using their IT-systems. Our main challenge is that our internal administration will have an extra burden in the coming period.

It is too early to estimate further economic consequences, focus now is to secure uninterrupted supply of our services with the aid of our responsible IT provider Tietoevry.

Dovre Group has reported possible breach to the Norwegian Dataprotection Authority, Norwegian National Security Authority and local Police in Stavanger.

For further information, please contact:

Dovre Group Plc
Arve Jensen
CEO
Tel. +47 90 60 78 11
arve.jensen@dovregroup.com

Dovre Group is a global provider of project management services. Dovre Group has three business areas: Project Personnel, Consulting and Renewable energy. Dovre Group has offices in Canada, Finland, Norway, Singapore, and the US, and employs more than 800 people worldwide. Dovre Group is listed on Nasdaq Helsinki (symbol: DOV1V). Website: www.dovregroup.com

Distribution:
Nasdaq Helsinki
Major media
www.dovregroup.com

Important additional information to our current and former employees and consultants in Norway.

As can be seen from the above press release, the data breach applies to the two Norwegian companies Dovre Group Energy and Dovre Group Consulting.

We would like to inform you about an undesirable event that has recently taken place. A data breach with a ransom virus has occurred in our server, and there is reason to assume that personal information about our employees may have been compromised . Dovre has not stored sensitive personal data.

We take this matter very seriously and are now working with data security experts to investigate the incident in detail. We have also contacted the relevant authorities and implemented measures to limit the damage.

It is important to emphasize that we have not yet confirmed whether any personal data has in fact been compromised. Nevertheless, we want to be transparent and ensure that you are informed about the situation.

What data may be affected?
It is possible that personal data, such as name, address, social security number, contact information and other relevant information may be affected. We are actively working to map the scope of the data breach, and if it turns out that personal data is compromised, we will let you know as soon as possible.

What measures have we implemented?
To safeguard your safety and privacy, we have implemented the following measures:

1. We have increased the monitoring of our systems and networks to detect any loss or misuse of data.
2. We have strengthened our security measures and implemented additional protection to prevent similar incidents in the future.
3. We work with the relevant authorities and data security experts to ensure a thorough investigation of the incident.

What can you do?
Although we have not yet confirmed that personal data has gone astray, we encourage you to be extra aware of potential fraud or unwanted communications that may be related to this incident. Be careful not to share personal information with unknown people or organizations.

We will keep you updated
We understand that this can be a concern, and we want to assure you that we are working hard to manage the situation and ensure your privacy. We will keep you updated on developments in the case and provide you with more information if we receive further information about the data breach.

If you have any questions for us, please send an email to:

Dovre Group Energy AS: dgegdpr@dovregroup.com

Dovre Group Consulting : dgcgdpr@dovregroup.com

Thank you for your understanding and cooperation.