Electrica Group, one of Romania’s most prominent energy service providers, has confirmed it is grappling with a ransomware attack. The cyber incident has prompted the company to activate its emergency response protocols and collaborate closely with national cybersecurity authorities to mitigate the impact.
Electrica Group, which serves approximately 4 million customers across Romania, reported that its critical systems, including SCADA (Supervisory Control and Data Acquisition) systems used for monitoring and controlling electricity distribution, remain unaffected.
However, temporary disruptions in customer interactions have occurred due to protective measures implemented to safeguard internal infrastructure. These disruptions are part of the company’s strategy to ensure the overall security of its systems.
Leveraging 2024 MITRE ATT&CK Results for SME & MSP Cybersecurity Leaders – Attend Free Webinar
In a public statement, Electrica emphasized that the attack has not compromised the continuity of electricity distribution or supply. “Our primary priority remains maintaining uninterrupted electricity services and protecting both personal and operational data managed within the group,” said Alexandru Aurelian Chirita, CEO of Electrica Group.
The Romanian Ministry of Energy confirmed that the attack was ransomware. Initial investigations suggest that while attempts were made to encrypt sensitive data, network equipment, and critical systems were unaffected.
“The SCADA systems are fully functional and insulated,” said Energy Minister Sebastian Burduja. He reassured citizens that there is no immediate risk to energy services and commended technical teams for their swift response.
Ransomware attacks typically involve malicious software encrypting a victim’s data, and attackers demand payment—often in cryptocurrency—to restore access.
While Electrica has not disclosed specific details about the perpetrators or their demands, intelligence analysts suspect potential links to pro-Russian groups. This follows recent reports of extensive cyberattacks targeting Romania’s election infrastructure.
To address the incident, Electrica has deployed specialized teams that will work alongside national cybersecurity experts to identify the source of the attack and prevent further damage.
The company has also urged consumers to remain vigilant against phishing attempts or suspicious communications falsely claiming to represent Electrica.
Romania’s Ministry of Energy highlighted the urgent need for enhanced cybersecurity measures in the energy sector, including establishing a dedicated Cyber Security Incident Response Center.
Electrica Group assured customers and stakeholders that it would provide regular updates on the situation as it unfolds. Meanwhile, efforts are underway to restore full functionality while ensuring robust protections against future threats.
Analyse Real-World Malware & Phishing Attacks With ANY.RUN - Get up to 3 Free Licenses
The post Romania’s Leading Energy Provider Electrica Group Hit by Ransomware Attack appeared first on Cyber Security News.
