The largest energy supplier and distributor in Romania, present in 18 counties, states that automated systems have not been taken out of service, but asks its subscribers “to be attentive to any suspicious messages received in the company’s name and to avoid providing personal data through unsecured channels.”
The Electrica Energy Group announced this morning, through a press release issued to the Bucharest Stock Exchange (as it is listed), that it has been the victim of a cyber attack.
It said that “Teams of specialists are working closely with national cybersecurity authorities to manage and remedy the incident, with the objective of resolving the situation as quickly as possible, identifying the source of the attack and limiting its impact.”
“We would like to emphasize that the Group’s critical systems are not affected, and any malfunctions that may have occurred in the interaction with our consumers are the effects of internal infrastructure protection measures. These measures are temporary and are intended to ensure the security of the entire system. At this time, all specific response protocols have already been activated in accordance with internal procedures and regulations in force. Our main priority is to maintain continuity in the distribution and supply of electricity, as well as to protect the personal data managed and operational data of all entities within the Electrica Group”, the group says in the press release.
“We will continue to inform the public about the evolution of the situation and the measures taken to remedy it. In this context, we recommend our consumers to be careful of any suspicious messages received on behalf of the company and to avoid providing personal data through unsecured channels”, the statement also states.
Sebastian Burduja, Minister of Energy, conveyed in an intervention by A3, that “It was a ransomware attack, the network equipment is not affected, the Skada system is isolated and functional. Basically, there is no risk now, Romanians need to know that they are safe. All systems have been checked, from a cyber perspective, we cannot say that this attack had other consequences. Now those who did this must be found and sanctioned”.