Nova Scotia Power, a leading Canadian electric utility, has confirmed that a recent ransomware cyberattack has caused disruptions to its smart power meter systems and compromised sensitive customer information, including data from individuals in the United States.
Incident Overview
The cyberattack, which targeted the company’s IT infrastructure, did not affect the physical delivery of electricity; there were no power outages or interruptions to generation, transmission, or distribution services. However, the attack did impede the company’s ability to communicate with its network of smart meters. While the meters continued to accurately record customers’ energy usage, Nova Scotia Power was unable to retrieve this data for billing purposes.
Impact on Customers
As a result of the disruption, the utility temporarily paused customer billing operations. Billing has since resumed, but most customers are currently receiving estimated bills until full communication with the meters is restored and actual usage data can be accessed.
More concerning, the attack led to a significant data breach affecting approximately 280,000 customers. The compromised information may include names, dates of birth, contact details, power consumption and billing data, and, for some customers, more sensitive information such as driver’s license numbers, Social Insurance Numbers, and bank account details.
Response and Notifications
Nova Scotia Power has begun notifying all impacted individuals, including those residing in the United States. The company is offering complimentary credit monitoring services—initially for two years, later extended to five years—to help protect against potential identity theft and financial fraud.
The utility has engaged cybersecurity experts and is working closely with government agencies to investigate the breach and strengthen its security protocols. While the company has not disclosed the identity of the ransomware group responsible, it has urged all customers to remain vigilant against potential scams and phishing attempts that may arise from the stolen data.
