Nova Scotia Power is notifying customers that a ransomware attack on its network has resulted in a massive leak of data, including personal information and bank account numbers.
Nova Scotia Power Inc, privately owned by Emera, is a vertically integrated electric utility in Nova Scotia, providing electricity to more than 500,00 residential, commercial and industrial customers in the Canadian province.
In April, the energy provider discovered a cyber intrusion and immediately took action to contain and isolate the affected servers and prevent further damage.
Compromised customer information
In a series of updates following the incident, the power supplier informs Canadians that, “While our investigation is ongoing, we have identified that certain customer personal information was accessed and taken by an unauthorized third party.”
The types of information impacted varied by customer, but investigators found the intruders likely made off with
- Names, phone number, email address, mailing and service addresses
- Nova Scotia Power program participation information, date of birth, and customer account history (such as power consumption, service requests, customer payment billing, credit history, and customer correspondence)
- Driver’s license numbers, Social Insurance Numbers, and…
- For some customers, bank account numbers for pre-authorized payment (if this information was provided by those customers)
Scam alert
The May 14 notice warns customers to watch out for scams that cite their data:
We encourage customers to remain vigilant and cautious about any unsolicited communications (such as emails, text messages, social posts, or phone calls), including messages that appear to be from Nova Scotia Power asking you to provide your personal information. Please avoid clicking on suspicious links or downloading attachments without confirming they are from a legitimate source.
The Nova Scotia Power home page displays the warning prominently, making sure clients are fully aware of the danger.
‘A sophisticated ransomware attack’
The latest update confirms that Nova Scotia Power has been targeted by ransomware operators.
“Today, we are confirming we have been the victim of a sophisticated ransomware attack,” reads the May 23 notice.
“No payment has been made to the threat actor,” the company notes, adding that “This decision reflects our careful assessment of applicable sanctions laws and alignment with law enforcement guidance.”
The threat actors have leaked the stolen data online, Nova Scotia Power says.
As expected in a ransomware attack where negotiations fail, the attackers have apparently moved to leverage the stolen data by trying to sell it online to anyone willing to buy it, typically fraudsters.
“We have learned that the threat actor has published data that was stolen from our systems,” the latest update reads. “We are actively working with cybersecurity experts to assess the nature and scope of the information that may have been impacted.”
The power supplier is sending notifications to “impacted account holders” with detailed information about the incident, offering guided support. The company has also enlisted the services of the consumer reporting agency TransUnion to provide impacted individuals with credit monitoring services.
The notice insists that customers who receive a notification should “remain vigilant and cautious about any unsolicited communications (such as emails, text messages, social posts, or phone calls), including messages that appear to be from Nova Scotia Power asking you to provide your personal information.”
What to do if your data is caught in a breach
As Nova Scotia Power warns, leaked customer information fuels scams and fraud.
When in doubt about a suspicious text, phone call, or social media interaction that cites your personal data, use Scamio, our free scam-fighting bot.
Anyone affected by a data breach should consider a data monitoring service. Bitdefender Digital Identity Protection lets you know if your data has been compromised or leaked online, what risks you face, and how to protect yourself.
Consider using a security solution on all your devices for peace of mind.
You may also want to read:
US Healthcare Giant Tells Patients to Watch Out Following Cyberattack
Phone Scammers Target Ohio Residents Following Cyberattack on Local Health System
Hackers May Have Grabbed Investor Data from VC Firm Insight Partners in Recent Breach