Energy and Utilities, Phishing and Scams

Protecting Oil and Gas Industry Infrastructure: Strategies for Resilience

SecureWorld News

JANUARY 16, 2025

To ensure energy security and economic stability, protecting the infrastructure is essential. A report from 2023 revealed that 67% of energy and utility companies faced ransomware attacks, with many incidents exploiting unpatched vulnerabilities. This significantly reduces the risk of unauthorized access.

Energy and Utilities

Energy and Utilities IoT Artificial Intelligence Backups

Nova Scotia Power confirms it was hit by ransomware attack but hasn’t paid the ransom

Security Affairs

MAY 27, 2025

is a vertically integrated electric utility serving the province of Nova Scotia, Canada. Its operations encompass generation, transmission, and distribution of electricity, utilizing a diverse mix of energy sources including coal, natural gas, hydroelectric, wind, tidal, oil, and biomass. or Caribbean utilities.

Energy and Utilities

Energy and Utilities Ransomware Data breaches Accountability

Nova Scotia Power discloses data breach after March security incident

Security Affairs

MAY 15, 2025

is a vertically integrated electric utility serving the province of Nova Scotia, Canada. Its operations encompass generation, transmission, and distribution of electricity, utilizing a diverse mix of energy sources including coal, natural gas, hydroelectric, wind, tidal, oil, and biomass. or Caribbean utilities.

Data breaches

Data breaches Energy and Utilities Accountability Insurance

Authorities Unsure if Spain, Portugal Power Outage Was a Cyber Attack

SecureWorld News

APRIL 29, 2025

Spain's grid operator, Red Elctrica, reported a sudden drop in energy demand from 27,000 to less than 13,000 megawatts, indicating a rapid and widespread failure. This event is another wake-up call that our increasingly interconnected energy systems require comprehensive resilience strategies that anticipate failure.

Cyber Attacks

Cyber Attacks Energy and Utilities Telecommunications Cybersecurity

The Scammers’ Playbook: How Cybercriminals Get Ahold of Your Data

eSecurity Planet

SEPTEMBER 14, 2022

As a matter of fact, the most-reported crime in the 2021 Internet Crime Report report was phishing , a social engineering scam wherein the victim receives a deceptive message from someone in an attempt to get the victim to reveal personal information or account credentials or to trick them into downloading malware. Social Tactics.

Social Engineering

Social Engineering Energy and Utilities Phishing Internet

Evolving Email Threats and How to Protect Against Them

IT Security Guru

OCTOBER 24, 2024

This attack method utilizes a “clean” URL within the body of the email before redirecting the user to a malicious one upon clicking it. AI-Powered Scams Continue to Present a Risk Traditional email scams were relatively easy to identify. Manufacturing (27%) suffered the most from BEC, phishing, and malspam emails this quarter.

Energy and Utilities

Energy and Utilities Scams Manufacturing Malware

Advanced threat predictions for 2025

SecureList

NOVEMBER 25, 2024

In general, we’ve observed hacktivists in the Russo-Ukrainian conflict become more skilled and more focused on attacking large organizations such as government, manufacturing and energy entities. However, one especially notable supply chain attack in 2024 was the XZ Utils backdoor, which we covered in a three-part blog post.

IoT

IoT Energy and Utilities Phishing Cryptocurrency

Cyber Security Roundup for April 2021

Security Boulevard

MARCH 31, 2021

Computer Weekly said it had learnt that FatFace paid a £1.5m ($2 million US dollar) ransom to the Conti Ransomware gang , disclosing the gang gained access to FatFace network and their IT systems via a phishing email on 10th January 2021. conduct employee phishing tests. conduct employee phishing tests. Stolen in Pandemic Scams.

Energy and Utilities

Energy and Utilities Ransomware Hacking Banking

Potential cybersecurity impacts of Russia’s invasion of Ukraine

Malwarebytes

FEBRUARY 25, 2022

Its operators seem to leverage vulnerabilities in external-facing servers while utilizing compromised account credentials to gain access and spread the malware further. The risk of scams. Current analyses of HermeticWiper reveal that the malware is being delivered in highly-targeted attacks in Ukraine, Latvia, and Lithuania.

Cybersecurity

Cybersecurity Ransomware Malware Government

Large-Scale AiTM Attack targeting enterprise users of Microsoft email services

Security Boulevard

AUGUST 2, 2022

ThreatLabz has discovered a new strain of a large-scale phishing campaign, which uses adversary-in-the-middle (AiTM) techniques along with several evasion tactics. Similar AiTM phishing techniques were used in another phishing campaign described by Microsoft recently here. Phishing campaign overview.

Phishing

Phishing Energy and Utilities Authentication Accountability

Spam and phishing in 2022

SecureList

FEBRUARY 16, 2023

Short-lived phishing sites often offered to see the premieres before the eagerly awaited movie or television show was scheduled to hit the screen. Thus, during the World Cup a brand-new scam appeared: it offered users to win a newly released iPhone 14 for predicting match outcomes.

Phishing

Phishing Scams Accountability Energy and Utilities

5 Major Cybersecurity Trends to Know for 2024

eSecurity Planet

DECEMBER 19, 2023

Before companies can effectively and safely use generative AI tools, employees must be educated on utilizing best practices: writing prompts that achieve desired outcomes, keeping data security and privacy in mind when inputting data, identifying the quality and security of AI, verifying AI output, and more,” elaborates Arti Raman, CEO Portal26.

Cybersecurity

Cybersecurity CISO Government Technology

Cyber CEO: Cybersecurity in 2021 – What We’ve Learned So Far

Herjavec Group

JULY 29, 2021

I’ve always believed that the best way to build a strong cybersecurity program is to utilize all the data. Cybersecurity programs that educate your entire team on general information security tactics – including recognizing and addressing phishing scams – are essential. Ransomeware-as-a-Service.

Cybersecurity

Cybersecurity Digital transformation Cyber Attacks Ransomware

LW ROUNDTABLE: Lessons learned from the headline-grabbing cybersecurity incidents of 2024

The Last Watchdog

DECEMBER 15, 2024

MFA attacks, leveraging phishing and session hijacking, are set to rise. water utility, highlights the escalating threat to critical infrastructure. As a result, sectors like healthcare and energy are adopting breach-ready defenses, emphasizing microsegmentation to contain impacts and ensure resilience.

Cybersecurity

Cybersecurity Cyber threats CISO Energy and Utilities

Cyber Security Informer

Protecting Oil and Gas Industry Infrastructure: Strategies for Resilience

Nova Scotia Power confirms it was hit by ransomware attack but hasn’t paid the ransom

Trending Sources

Nova Scotia Power discloses data breach after March security incident

Authorities Unsure if Spain, Portugal Power Outage Was a Cyber Attack

The Scammers’ Playbook: How Cybercriminals Get Ahold of Your Data

Evolving Email Threats and How to Protect Against Them

Advanced threat predictions for 2025

Cyber Security Roundup for April 2021

Potential cybersecurity impacts of Russia’s invasion of Ukraine

Large-Scale AiTM Attack targeting enterprise users of Microsoft email services

Spam and phishing in 2022

5 Major Cybersecurity Trends to Know for 2024

Cyber CEO: Cybersecurity in 2021 – What We’ve Learned So Far

LW ROUNDTABLE: Lessons learned from the headline-grabbing cybersecurity incidents of 2024

Stay Connected