Energy and Utilities, Information Security and Ransomware

Canadian electric utility Nova Scotia Power and parent company Emera suffered a cyberattack

Security Affairs

MAY 1, 2025

Canadian electric utility Nova Scotia Power and parent company Emera are facing a cyberattack that disrupted their IT systems and networks. is a vertically integrated electric utility serving the province of Nova Scotia, Canada. or Caribbean utilities. Nova Scotia Power Inc.

Energy and Utilities

Energy and Utilities Ransomware Cyber Attacks Hacking

Nova Scotia Power confirms it was hit by ransomware attack but hasn’t paid the ransom

Security Affairs

MAY 27, 2025

Nova Scotia Power confirms it was hit by a ransomware attack but hasn’t paid the ransom, nearly a month after first disclosing the cyberattack. Nova Scotia Power confirmed it was hit by a ransomware attack nearly a month after disclosing a cyber incident. or Caribbean utilities. Nova Scotia Power Inc.

Energy and Utilities

Energy and Utilities Ransomware Data breaches Accountability

DMEA Colorado electric utility hit by a disruptive cyberattack

Security Affairs

DECEMBER 6, 2021

A ransomware attack hit an electric utility in Colorado causing a significant disruption and damage. The Delta-Montrose Electric Association (DMEA) is a local electric cooperative located in Colorado, it is part of Touchstone Energy Cooperatives. SecurityAffairs – hacking, Colorado Electric Utility). Pierluigi Paganini.

Energy and Utilities

Energy and Utilities Cyber Attacks Ransomware Data breaches

The Only Thing Surprising About The Crippling Ransomware Attack On A Major US Fuel Pipeline Is That Anyone Is Surprised That The Attack Succeeded

Joseph Steinberg

MAY 12, 2021

And, just before the COVID-19 pandemic hit the United States, the Department of Homeland Security alerted information security professionals that a ransomware attack delivered via phishing emails had adversely impacted operations at one of the country’s natural gas processors. Nor were those isolated incidents.

Energy and Utilities

Energy and Utilities Ransomware Artificial Intelligence Cyber Attacks

Conti ransomware gang exploits Log4Shell bug in its operations

Security Affairs

DECEMBER 17, 2021

The Conti ransomware gang is the first ransomware operation exploiting the Log4Shell vulnerability to target VMware vCenter Servers. Conti ransomware gang is the first professional race that leverages Log4Shell exploit to compromise VMware vCenter Server installs. ” reads the analysis published by AdvIntel.

Ransomware

Ransomware Energy and Utilities Cybercrime Malware

Nova Scotia Power discloses data breach after March security incident

Security Affairs

MAY 15, 2025

is a vertically integrated electric utility serving the province of Nova Scotia, Canada. Its operations encompass generation, transmission, and distribution of electricity, utilizing a diverse mix of energy sources including coal, natural gas, hydroelectric, wind, tidal, oil, and biomass. or Caribbean utilities.

Data breaches

Data breaches Energy and Utilities Accountability Insurance

Johannesburg residents left in the dark after a ransomware attack at City Power

Security Affairs

JULY 25, 2019

South African electric utility City Power that provides energy to the city of Johannesburg, has suffered serious disruptions after a ransomware attack. A ransomware infected systems at City Power, an electricity provider in the city of Johannesburg, South Africa, and some residents were left without power.

Energy and Utilities

Energy and Utilities Ransomware Advertising Encryption

Ragnar Ransomware encrypts files from virtual machines to evade detection

Security Affairs

MAY 25, 2020

Ransomware encrypts from virtual machines to evade antivirus. Ragnar Locker deploys Windows XP virtual machines to encrypt victim’s files, the trick allows to evaded detection from security software. In a recently detected attack, Ragnar Locker ransomware was deployed inside an Oracle VirtualBox Windows XP virtual machine.”

Encryption

Encryption Ransomware Energy and Utilities Software

Operation Cronos: law enforcement disrupted the LockBit operation

Security Affairs

FEBRUARY 19, 2024

An international law enforcement operation codenamed ‘Operation Cronos’ led to the disruption of the LockBit ransomware operation. A joint law enforcement action, code-named Operation Cronos, conducted by law enforcement agencies from 11 countries has disrupted the LockBit ransomware operation. on January 5, 2020.

Energy and Utilities

Energy and Utilities Ransomware Financial Services Manufacturing

RedEnergy Stealer-as-a-Ransomware employed in attacks in the wild

Security Affairs

JULY 5, 2023

RedEnergy is a sophisticated stealer-as-a-ransomware that was employed in attacks targeting energy utilities, oil, gas, telecom, and machinery sectors. Zscaler ThreatLabz researchers discovered a new Stealer-as-a-Ransomware named RedEnergy used in attacks against energy utilities, oil, gas, telecom, and machinery sectors.

Energy and Utilities

Energy and Utilities Ransomware Backups Malware

Resecurity Released a 2024 Cyber Threat Landscape Forecast

Security Affairs

DECEMBER 26, 2023

Key trends: 1️ Increased Ransomware Activity Targeting Public Companies Ransomware groups are poised to intensify their focus on publicly-traded organizations. Recent U.S.

Cyber threats

Cyber threats Energy and Utilities Cyber Attacks Artificial Intelligence

Threat actors breached the network of the Italian oil company ENI

Security Affairs

AUGUST 31, 2022

Bloomberg News first reported the news of the attack on Wednesday, speculating that Eni appeared to have been hit by a ransomware attack. People familiar with the situation said Eni appeared to be hit by a ransomware attack. Ransomware is a type of malware that locks computers and blocks access to files in lieu of a payment.

Energy and Utilities

Energy and Utilities Ransomware Cyber Attacks Hacking

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Security Affairs

FEBRUARY 21, 2024

government offers rewards of up to $15 million for information that could lead to the identification or location of LockBit ransomware gang members and affiliates. LockBit ransomware attacks have resulted in ransom payments exceeding $144 million for recovery. ” reads the press release published by the U.S.

Energy and Utilities

Energy and Utilities Ransomware Manufacturing Financial Services

FBI obtained 7,000 LockBit decryption keys, victims should contact the feds to get support

Security Affairs

JUNE 6, 2024

The FBI is informing victims of LockBit ransomware it has obtained over 7,000 LockBit decryption keys that could allow some of them to decrypt their data. ” said Bryan Vorndran, the Assistant Director at the FBI Cyber Division, during the 2024 Boston Conference on Cyber Security. reads the press release published by NCA.

Energy and Utilities

Energy and Utilities Ransomware Encryption Financial Services

Everest gang demands $200K for data stolen from South Africa state-owned electricity company ESKOM

Security Affairs

OCTOBER 9, 2022

Everest ransomware operators claimed to have hacked South Africa state-owned company ESKOM Hld SOC Ltd. In March 2022, the Everest ransomware operators published a notice announcing the sale of “South Africa Electricity company’s root access” for $125,000. Is having some server issues.

Energy and Utilities

Energy and Utilities Ransomware InfoSec Hacking

More details about Operation Cronos that disrupted Lockbit operation

Security Affairs

FEBRUARY 20, 2024

Law enforcement provided additional details about the international Operation Cronos that led to the disruption of the Lockbit ransomware operation. Yesterday, a joint law enforcement action, code-named Operation Cronos , conducted by law enforcement agencies from 11 countries disrupted the LockBit ransomware operation.

Energy and Utilities

Energy and Utilities Ransomware Manufacturing Financial Services

Colonial Pipeline attack spotlights risks of geographically dispersed networks in an industry that is ‘far behind’

SC Magazine

MAY 10, 2021

Alpharetta, Georgia-based Colonial Pipeline, which has the largest fuel pipeline, was forced to shut down its oil and gas pipeline system on Friday after a ransomware attack that has slowed down the transportation of oil in the eastern U.S. Fortress Information Security. Photo by Michael M. Santiago/Getty Images).

Risk

Risk Energy and Utilities Backups Ransomware

Business security remains resilient in the wake of coronavirus

IT Security Guru

JUNE 16, 2021

In addition to hacking efforts, businesses reported increased pressure from phishing (44%), fake contact tracing apps and calls (43%) and ransomware (43%), with the greatest increase in incidents in the energy, oil, gas and utilities sector (80%).

CISO

CISO Energy and Utilities Phishing Ransomware

TrickBot member extradited to US faces up to 60 years in prison

Security Affairs

OCTOBER 30, 2021

“Trickbot attacked businesses and victims across the globe and infected millions of computers for theft and ransom, including networks of schools, banks, municipal governments, and companies in the health care, energy, and agriculture sectors,” said Deputy Attorney General Lisa O. 6, in Miami, Florida.”.

Identity Theft

Identity Theft Energy and Utilities Malware Banking

Leaked documents from Russian firm NTC Vulkan show Sandworm cyberwarfare arsenal

Security Affairs

APRIL 2, 2023

The group is also the author of the NotPetya ransomware that hit hundreds of companies worldwide in June 2017. Energy utilities and oil and gas, but also water utilities and transportation systems, are privileged targets of nation-state actors. ” concludes the report.

Energy and Utilities

Energy and Utilities Media Hacking Technology

ICS and OT threat predictions for 2024

SecureList

JANUARY 31, 2024

Ransomware Ransomware will remain the No. In 2023, ransomware attacks consolidated their hold on the top of the ranking of information security threats to industrial enterprises. The ransomware market is heading for a peak, which may be followed by a decline or stagnation.

Ransomware

Ransomware Energy and Utilities Marketing Backups

Threats to ICS and industrial enterprises in 2022

SecureList

NOVEMBER 23, 2021

And plans to improve information security and introduce new protection tools and measures are predicated, in some way, on the chosen adversary model. Extortion and ransomwaring of those able and willing to pay up. Reselling of stolen information to fellow cybercriminals, competitors of the victim and other interested parties.

Spyware

Spyware Phishing Cybercrime Energy and Utilities

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Security Affairs

SEPTEMBER 15, 2020

Department of Justice indictment, MSS-affiliated actors have targeted various industries across the United States and other countries—including high-tech manufacturing; medical device, civil, and industrial engineering; business, educational, and gaming software; solar energy; pharmaceuticals; and defense—in a campaign that lasted over ten years.[

Government

Government VPN Firmware Energy and Utilities

Security Roundup September 2024

BH Consulting

SEPTEMBER 24, 2024

NIS2 in the nick of time The Irish Government has published the Heads of Bill for the NIS2 Directive (the Network and Information Security Directive EU 2022/2555, to give its full name). The National Cyber Security Bill 2024 is the legislative vehicle for transposing NIS2 into Irish law.

Energy and Utilities

Energy and Utilities Penetration Testing Banking Spyware

Risky Business Aging critical infrastructure networks and advanced attacks

Thales Cloud Protection & Licensing

MAY 13, 2021

Operating the country’s largest refined products pipeline, Colonial Pipeline was brought to its knees over the weekend by a ransomware attack by cybercriminal gang, DarkSide. The same experts warn by not investing in updating security, critical infrastructure operators are flirting with catastrophe. The most recent attack on a top U.S.

Energy and Utilities

Energy and Utilities Encryption Data collection Ransomware

NetApp ONTAP Becomes First Enterprise Storage Platform to Receive Validation from NSA for Security and Encryption

CyberSecurity Insiders

DECEMBER 15, 2021

With this, organizations across the globe can benefit from NetApp ONTAP’s robust security capabilities to protect customers’ information on-premises and in remote locations from foreign actors, ransomware attacks or other data loss threats they may face. A cybersecurity program led by the U.S. Additional Resources: About NetApp.

Encryption

Encryption Energy and Utilities Digital transformation Software

Cyber Threats Against Energy Sector Surge as Global Tensions Mount

Security Affairs

APRIL 16, 2025

Resecurity warns of rising cyberattacks on the energy sector, some linked to large-scale campaigns targeting national infrastructure for geopolitical aims. Resecurity warns about the increase in targeted cyberattacks against enterprises in the energy sector worldwide. In response to these growing threats, the U.S.

Energy and Utilities

Energy and Utilities Cyber threats Cyber Risk Technology

How Blockchain Can Drive Legal Industry Forward

Spinone

SEPTEMBER 3, 2018

Financial institutions, healthcare, public sector and government agencies, manufacturing, and energy companies are all embracing digital business trends. Hackers penetrated into a computer network and stole the confidential information worth over $4 million for the purpose of insider trading and planned mergers.

Technology

Technology Energy and Utilities Authentication Cyber Attacks

Cyber Security Roundup for March 2021

Security Boulevard

FEBRUARY 28, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, February 2021. Npower removed its mobile app after an attack exposed " some customers' financial and personal information." Total Fitness Ransomware Attack. NCSC ransomware PDF.

Energy and Utilities

Energy and Utilities Ransomware DDOS Accountability

Cyber Security Roundup for April 2021

Security Boulevard

MARCH 31, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, March 2021. The ransomware attack was said to be executed on 17th January 2021 and over 200Gb of data was exfiltrated. More and More Ransomware Attacks. All very sound advice.

Energy and Utilities

Energy and Utilities Ransomware Hacking Banking

FBI confirmed that Darkside ransomware gang hit Colonial Pipeline

Security Affairs

MAY 10, 2021

FBI confirmed that the attack against the Colonial Pipeline over the weekend was launched by the Darkside ransomware gang. Federal Bureau of Investigation confirmed that the Colonial Pipeline was shut down due to a cyber attack carried out by the Darkside ransomware gang. The pipeline allows carrying 2.5 Pierluigi Paganini.

Ransomware

Ransomware Energy and Utilities Healthcare Cybercrime

The Hacker Mind Podcast: Reverse Engineering Smart Meters

ForAllSecure

MAY 13, 2022

For example, in 2009, the Obama administration provided financial incentives to utilities in the United States. And again, smart meters were positioned squarely as making the environment more friendly by knowing how and when energy is being used by individual customers. Environmental effects caused by pollution.

Engineering

Engineering Energy and Utilities Computers and Electronics Firmware

Security Affairs newsletter Round 344

Security Affairs

DECEMBER 12, 2021

Is it a ransomware attack? Australian ACSC warns of Conti ransomware attacks against local orgs A zero-day exploit for Log4j Java library could have a tsunami impact on IT giants 1.6 Australian ACSC warns of Conti ransomware attacks against local orgs A zero-day exploit for Log4j Java library could have a tsunami impact on IT giants 1.6

Energy and Utilities

Energy and Utilities Ransomware Cryptocurrency Data breaches

The Hacker Mind Podcast: Hacking Industrial Control Systems

ForAllSecure

APRIL 26, 2022

This is ransomware, starting with a phishing attack. So there’s a need, a definite need, for information security professionals to have access to industrial control systems -- not virtual, but actual hands on systems -- so they can learn. So this power grid attack is sounding more credible. Van Norman: Absolutely.

Hacking

Hacking Manufacturing Energy and Utilities Firmware

Cyber CEO: Cybersecurity in 2021 – What We’ve Learned So Far

Herjavec Group

JULY 29, 2021

I’ve always believed that the best way to build a strong cybersecurity program is to utilize all the data. This means learning from the successes and the failures and using those learnings to enhance security measures, standards, and technology. The Rise of Ransomware. Your People are Your First Line of Defense.

Cybersecurity

Cybersecurity Digital transformation Cyber Attacks Ransomware

Threat predictions for industrial enterprises 2025

SecureList

JANUARY 29, 2025

Therefore, many countries are looking for their way into the new technological order, investing in promising research and development in a variety of areas: AI and machine learning, quantum computing, optical electronics, new materials, energy sources and types of engines, satellites and telecommunications, genetics, biotechnology and medicine.

Technology

Technology Computers and Electronics Energy and Utilities Risk

Cyber Security Informer

Canadian electric utility Nova Scotia Power and parent company Emera suffered a cyberattack

Nova Scotia Power confirms it was hit by ransomware attack but hasn’t paid the ransom

Trending Sources

DMEA Colorado electric utility hit by a disruptive cyberattack

The Only Thing Surprising About The Crippling Ransomware Attack On A Major US Fuel Pipeline Is That Anyone Is Surprised That The Attack Succeeded

Conti ransomware gang exploits Log4Shell bug in its operations

Nova Scotia Power discloses data breach after March security incident

Johannesburg residents left in the dark after a ransomware attack at City Power

Ragnar Ransomware encrypts files from virtual machines to evade detection

Operation Cronos: law enforcement disrupted the LockBit operation

RedEnergy Stealer-as-a-Ransomware employed in attacks in the wild

Resecurity Released a 2024 Cyber Threat Landscape Forecast

Threat actors breached the network of the Italian oil company ENI

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

FBI obtained 7,000 LockBit decryption keys, victims should contact the feds to get support

Everest gang demands $200K for data stolen from South Africa state-owned electricity company ESKOM

More details about Operation Cronos that disrupted Lockbit operation

Colonial Pipeline attack spotlights risks of geographically dispersed networks in an industry that is ‘far behind’

Business security remains resilient in the wake of coronavirus

TrickBot member extradited to US faces up to 60 years in prison

Leaked documents from Russian firm NTC Vulkan show Sandworm cyberwarfare arsenal

ICS and OT threat predictions for 2024

Threats to ICS and industrial enterprises in 2022

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Security Roundup September 2024

Risky Business Aging critical infrastructure networks and advanced attacks

NetApp ONTAP Becomes First Enterprise Storage Platform to Receive Validation from NSA for Security and Encryption

Cyber Threats Against Energy Sector Surge as Global Tensions Mount

How Blockchain Can Drive Legal Industry Forward

Cyber Security Roundup for March 2021

Cyber Security Roundup for April 2021

FBI confirmed that Darkside ransomware gang hit Colonial Pipeline

The Hacker Mind Podcast: Reverse Engineering Smart Meters

Security Affairs newsletter Round 344

The Hacker Mind Podcast: Hacking Industrial Control Systems

Cyber CEO: Cybersecurity in 2021 – What We’ve Learned So Far

Threat predictions for industrial enterprises 2025

Stay Connected