Important information on the cyber attack against the MCH Group and your cyber security
Frequently asked questions
How exactly is the MCH Group affected?
We know that parts of the MCH Group’s IT infrastructure – servers and devices such as laptops, PCs, etc. – are affected. To what extent and to what degree is part of the ongoing analyses by internal and external IT experts, the police and federal cybercrime specialists (National Cyber Security Center, NCSC).
How long will it take to fix the problems?
Unfortunately, at this point, we can’t say when the problems will be completely fixed. Our IT team and external specialists are working intensively to ensure that all systems will be available again as soon as possible. Fortunately, the systems that are most important for our business operations have largely been put back into operation in the last few days.
Has any data been stolen? If so, which data?
Unfortunately, the information available to us and the results of the analysis indicate that the perpetrators had access to data memories which also contain personal data of customers and partners of the MCH Group (e.g. contact details). A detailed evaluation of the stolen data is still pending at the present time.
What is the MCH Group’s attitude towards attackers and their demands?
We will not abet such criminal activities and have filed a criminal complaint against the perpetrators, who are unknown to us, and informed the relevant authorities, with whom we are cooperating closely. Please understand that we do not provide any further information on this matter at this time.
What can I do as a customer or partner to protect my data?
We recommend that you change your passwords or access data associated with the MCH Group immediately. However, this is not yet possible for some systems for exhibitors and partners at the moment (further information will follow as soon as possible). Please note that you also make these changes for accounts and services for which the MCH Group is not responsible, but for which you have used the same password. We also recommend that you exercise caution when dealing with unknown contacts, e.g. if you are contacted by third parties by e-mail or telephone who, for example, represent themselves as your bank, internet provider or insurance company and use personal details to gain your trust.
How can I communicate with the MCH Group?
Important communication channels such as telephone and e-mail are functioning. We have also set up a special hotline in this connection: firstname.lastname@example.org | +41 58 206 26 66
Are e-mails coming from the MCH Group or from one of its accounts secure?
Yes, e-mails from all MCH accounts are secure. This also applies to attachments sent with them. However, be careful with incoming mails regarding possible phishing mails.
Are the invoicing and payment processes for partners and suppliers working?
Unfortunately, there may still be delays in invoicing and payment processes. To speed up these processes, partners and suppliers are requested to send their invoices exclusively to the new e-mail address email@example.com (the previous e-mail address firstname.lastname@example.org will be deactivated). Payment will be made 2 to 3 weeks after receipt of the invoice, provided it is correct and complete. If you have any questions, the MCH Group’s Finance Team will be happy to be contacted by e-mail address email@example.com.
Can the upcoming exhibitions and events be staged?
Yes, the staging of the planned events is guaranteed.
If you have any questions in connection with your customer relationship with the MCH Group, you can contact us via the hotline:
+41 58 206 26 66
MO-FR 08.00-12.00 / 13.00-17.00 (CET)
Information and recommendations to our customers and partners
27 October 2021
On 20 October 2021, MCH Group was hit by a criminal cyber attack using malware. Our IT specialists immediately took measures to defend against the attack and restore the IT systems. In doing so, we are working closely with security and cybercrime specialists, including the Swiss National Cyber Security Centre (NCSC), the police and partners specialising in such cases.
We are working to get all our systems and services fully operational again as soon as possible. The most important internal and external communication channels are ensured. The staging of the planned events is guaranteed.
Unfortunately, the available information and analyses indicate that the perpetrators have nevertheless succeeded in gaining access to data that contains personal data (e.g. contact details) of customers, partners and employees of the MCH Group. Currently, the existing traces are being evaluated in cooperation with cybersecurity experts.
We will not abet such criminal activities and have filed a criminal complaint against the perpetrators unknown to us and informed the relevant authorities and cooperating closely with them.
We have taken the necessary measures to protect our employees, customers and partners and continue to work with a wide range of internal and external specialists to resolve the issues. The knowledge gained from this incident will help us to make our systems, which already meet high security requirements, even more secure.
If you are a customer or partner of the MCH Group, as a precautionary measure, we recommend that you change your passwords or access data associated with the MCH Group immediately . However, this is not yet possible for some systems for exhibitors and partners at the moment (further information will follow as soon as possible). Please note that you also make these changes for accounts and services for which the MCH Group is not responsible, but for which you have used the same password.
We also recommend that you exercise caution when dealing with unknown contacts, e.g. if you are contacted by third parties by e-mail or telephone who, for example, represent themselves as your bank, internet provider or insurance company and use personal details to gain your trust.
Cyber attack against the MCH Group
21 October 2021
On Wednesday, 20 October 2021, the MCH Group was hit by a criminal cyber attack using malware. The internal ICT specialists, together with other external experts and the federal authorities, immediately took measures to limit the damage as far as possible. As part of this process, it will be investigated if any data have been siphoned. The MCH Group will file a criminal complaint.
The ICT experts are working intensively to make all the systems available again as soon as possible and ready to function. The current and forthcoming exhibitions and events will be held as planned.