A ransomware attack struck Romanian energy provider Electrica

December 12, 2024
Ransomware Attack Romania Electrica Power Distribution and Supply Europe Cyberattack

One of the major stakeholders of Romania’s power distribution and supply business, Electrica Group, is investigating a ransomware attack earlier this week.

This campaign may cause severe damage to the country as the corporation provides nationwide coverage for electricity delivery, maintenance, and energy services to over 3.8 million consumers in Muntenia and Transilvania.

This affected entity started as a National Electricity Company (CONEL) section in 1998 before becoming autonomous in 2000. Moreover, the corporation has made progress and has been listed on the Bucharest and London stock markets since 2014.

 

Electrica notified its investors about an investigation of a cybersecurity incident.

 

According to reports, Electrica informed its investors earlier this week that it is working with national cybersecurity authorities to investigate an ongoing intrusion.

The corporation’s CEO assured the public that the ongoing cybersecurity issue does not impact its vital systems and that any disruptions in consumer interaction are due to internal infrastructure protection measures.

The company also explained that the restrictions are temporary to ensure the system’s overall security. Moreover, they also disclose that their priority is maintaining energy distribution and supply and protecting controlled personal and operational data for all Electrica Group organisations.

On the other hand, a Ministry of Energy press statement claims the company was the victim of a ransomware attack that did not affect Electrica’s SCADA systems despite the corporation’s refusal to divulge the nature of the attack.

The Energy Minister stated that its initial findings show that the campaign was a ransomware attack. However, it was also verified that the network equipment had not been compromised and remains unaffected.

Furthermore, Distributie Electric Power Romania’s SCADA systems are fully operational and insulated, and its technical teams are working with relevant parties to mitigate any threats following cybercriminal intrusions.

This cyberattack happened after Romania’s Constitutional Court (CCR) nullified the presidential elections. These details cite significant evidence that a TikTok influence campaign linked to Russia influenced the first round of voting.

These cyberattacks may continue to compromise Romania and its election process. Therefore, the country’s vital infrastructure should be wary of these malicious activities, as it will be heavily targeted in the following months.

About the author