The firm says it is working to determine the extent of the breach
The key could have come from US or Russian authorities - or a paid ransom
More and more ransomware groups are starting to steal data before encryption in order to blackmail their victims into paying up