Cyber attacks are now one of the biggest risks for companies. The threat situation is constantly evolving, while many IT structures have grown historically and do not always meet current security requirements. If attackers gain access to a company network, they can cause massive damage within a short space of time - from encrypted data to completely destroyed IT systems. It is therefore becoming increasingly important for companies to not only consider security measures reactively, but to establish them as a permanent part of their IT strategy.
One company that has consistently followed this path is Albert Leymann GmbH & Co KG (Leymann Baustoffe). The family-run building materials dealer was founded in 1900 and supplies customers from the construction industry, trade and private sector with a wide range of building materials. DATAGROUP has been supporting the company in the further development of its IT landscape for many years. The cooperation is based on a close exchange between the internal IT department, the management and DATAGROUP's experts. Requirements are evaluated, projects are planned and technical developments are driven forward together. This established partnership also proved to be particularly valuable in an extraordinary situation.
In June 2025, Leymann Baustoffe's IT environment was the target of a cyber attack. Attackers gained access to the network through a zero-day exploit and prepared an attack there over an extended period of time. When the attack was finally triggered, the perpetrators encrypted or deleted large parts of the data. Systems were destroyed and rendered unusable. At the same time, the attackers placed a blackmail letter on users' desktops and had it automatically printed out via the company's printers.
On the same day, the company's managing directors contacted DATAGROUP and asked for immediate support. An initial assessment of the situation was carried out that evening. The following day, a team of specialists from DATAGROUP Bremen and experts from the operations units arrived at the headquarters in Sulingen. Security analysts, senior consultants and enterprise architects analyzed the situation together with the customer, assessed the extent of the attack and developed a structured action plan.
"The cyberattack was an enormous challenge for our company. At the same time, it made it clear to us how important a modern and professionally secured IT infrastructure is. DATAGROUP supported us in this critical situation quickly, in a structured manner and with a high level of technical expertise. Together, we not only succeeded in restoring our IT, but also in raising it to a new level of security."
Philipp Leymann, Managing Director of Albert Leymann GmbH & Co KG
The analysis quickly showed that large parts of the IT infrastructure had been compromised or destroyed. Together with DATAGROUP, the management therefore made a conscious decision not to restore the previous state. Instead, a complete rebuild of the IT systems was planned. Over a period of around six months, a new IT landscape was created that was consistently aligned with current security standards and best practices. At the same time, the software in use was reviewed and partially consolidated in order to reduce complexity and administrative effort.
A central component of the new security strategy is the use of security services from DATAGROUP's CORBOX. For the first time, Leymann Baustoffe is using continuously provided IT security services that enable permanent monitoring of the systems, early detection of potential threats and systematic identification of vulnerabilities. In addition, specialized experts are available to quickly analyze security incidents and initiate appropriate countermeasures in the event of an emergency.
DATAGROUP's Security Operations Center also monitors the systems around the clock. Potential threats are detected and evaluated at an early stage using modern analysis methods. Continuous vulnerability scans identify security gaps, while incident response experts can react immediately in the event of an emergency. This sustainably increases the security level of the entire IT environment.
|
Over 30 years of partnership-based cooperation between Leymann and DATAGROUP |
Around 6 months to completely rebuild a secure IT infrastructure |
24/7 monitoring of the IT systems by the Security Operations Center |
The attack showed the company how much the threat situation for IT systems has changed in recent years. While many companies still operate their IT structures according to traditional patterns, attackers are acting in an increasingly professional and highly organized manner.
For Leymann Baustoffe, the cyber incident was therefore also a turning point. The management and IT managers see the investments in modern security structures and professional security services as a long-term investment in the stability and future viability of the company.
Thanks to the combination of a modernized IT infrastructure and continuous security services, Leymann Baustoffe is now in a much better position to detect cyber threats at an early stage and respond to them effectively.
The Leymann Group is a family-run company in the building materials trade with its headquarters in Sulingen. Since its foundation in 1900, the company has developed into a leading regional trading group. In addition to Albert Leymann GmbH & Co KG, the group also includes Konrad Leymann GmbH & Co KG and Leymann Keramikbau GmbH & Co KG. In total, Leymann employs around 530 people at 15 locations in Lower Saxony, North Rhine-Westphalia and Brandenburg.