Electrica Group
December 9, 2024
•[ ransomware, malware, energy ]
Electrica Group, a key player in the Romanian electricity distribution and supply market, is investigating a ransomware attack.
Refinadora Costarricense de Petróleo
November 27, 2024
•[ ransomware, malware, energy ]
Refinadora Costarricense de Petrleo (RECOPE), the state-owned energy provider for Costa Rica is hit with a ransomware attack, requiring the company to shift to manual operations and call in help from abroad.
ENGlobal Corporation
November 25, 2024
•[ ransomware, malware, energy ]
ENGlobal Corporation, a major contractor for the energy industry confirms in a notice to regulators that it is dealing with a ransomware attack that has hindered operations.
Tibber
November 10, 2024
•[ hack, energy ]
In November 2024, the German electricity provider Tibber suffered a data breach that exposed the personal information of 50k customers. The data included names, email addresses, geographic locations (city and postcode) and total spend on purchases. The data was provided to HIBP by a source who requested it be attributed to "Threat Actor 888".
Newpark Resources
October 29, 2024
•[ ransomware, malware, energy ]
Newpark Resources, a key supplier for oilfields says a ransomware attack caused disruptions and limited access to certain systems.
Government sites and nuclear facilities in Iran
October 12, 2024
•[ hack, ddos, government ]
Government sites and nuclear facilities in Iran are hit by disruptive cyberattacks.
Undisclosed nuclear-related organization
October 1, 2024
•[ espionage, malware, energy ]
Researchers at Kaspersky reveal that the Lazarus Group, the threat actor linked to the Democratic People's Republic of Korea (DPRK), has been observed leveraging a "complex infection chain" targeting at least two employees belonging to an unnamed nuclear-related organization. The attacks, part of Operation Dream Job, culminated in the deployment of a new modular backdoor referred to as CookiePlus,
Halliburton
August 21, 2024
•[ hack, energy ]
Halliburton, one of the world's largest providers of services to the energy industry, confirms a cyberattack that forced it to shut down some of its systems earlier this week.
Evolution Mining
August 8, 2024
•[ ransomware, malware, energy ]
Evolution Mining informs that it has been targeted by a ransomware attack, which impacted its IT systems.
Northern Minerals
June 4, 2024
•[ ransomware, malware, energy ]
Northern Minerals issues an announcement warning that it suffered a cybersecurity breach resulting in some of its stolen data being published on the dark web. The BianLian ransomware group claims responsibility for the attack,
Iberdrola
May 7, 2024
•[ leak, energy ]
Spanish multinational electrical utility Iberdrola says a cyber incident to a supplier in the beginning of May resulted in a data breach involving 850,000 Spanish customers.
Atlas
May 1, 2024
•[ ransomware, malware, energy ]
The Back Basta extortion group claims to have breached Atlas, one of the largest national distributors of fuel in the United States. Black Basta purportedly stole 730 GB of data
Muscatine Power and Water
March 1, 2024
•[ ransomware, malware, energy ]
Muscatine Power and Water warns the public of a ransomware attack discovered on January 26.
Chelan County Public Utility District
February 29, 2024
•[ energy ]
The Chelan County Public Utility District is impacted by a cybersecurity event" that kept a nationwide vendor from mailing and emailing statements.
Trans-Northern Pipelines (TNPI)
February 14, 2024
•[ ransomware, malware, energy ]
Trans-Northern Pipelines (TNPI) confirms its internal network was breached in November 2023 and that it's now investigating claims of data theft made by the ALPHV/BlackCat ransomware gang.
Naftogaz
January 25, 2024
•[ hack, energy ]
Naftogaz, Ukraine's state-owned gas and oil company, is hit by a large-scale cyberattack.
Bangkok Industrial Gas Company Limited
January 22, 2024
•[ leak, energy ]
The Bangkok Industrial Gas Company Limited suffers a leak.
Lvivteploenergo
January 22, 2024
•[ hack, malware, energy ]
Researchers at Dragos reveal that a previously unseen malware, dubbed FrostyGoop, able to disrupt industrial processes, was used in a cyberattack against a district energy company in Ukraine, resulting in two days without heat for hundreds of people during sub-zero temperatures.
IEC (Israel Electricity Corporation)
December 27, 2023
•[ hack, energy ]
Iranian hacktivists from the CyberAv3ngers group claim to be in possession and to be selling 1TB of data from Israel's electricity infrastructures
Rosvodokanal
December 20, 2023
•[ ransomware, malware, energy ]
Hacktivists from the pro-Ukraine collective BLACKJACK claim to have launched an attack on Rosvodokanal, the largest private water utility in Russia, and to have stolen documents, encrypted 6,000 computers, and deleted 50 Tb of data.
