Nova Scotia Power says it has been the victim of a ransomware attack and the hackers who breached their system have published stolen data.
In an update on Friday afternoon, the utility said it has made no payment to the threat actor after careful assessment of applicable sanctions laws and alignment with law enforcement guidance.
“We have learned that the threat actor has published data that was stolen from our systems,” the statement said.
“We are actively working with cybersecurity experts to assess the nature and scope of the information that may have been impacted.”
Nova Scotia Power said it is “sincerely sorry” this has happened and has mailed out notifications to customers who have been impacted, along with information on resources and supports.
The utility previously said the breach took place on or around March 19 and that data stolen from its customers includes credit histories, social insurance numbers and information on driver’s licences and bank accounts.
