- Endesa Energia suffered unauthorized access, exposing customer data and IBAN numbers
- Hackers reportedly sold 20 million records and 1TB of SQL files on the dark web
- The company warns against the risks of phishing and identity theft; ongoing investigation
Endesa Energia, the retail arm of one of Europe’s largest energy suppliers, Endesa, SA, has confirmed that it recently suffered a cyberattack that caused it to lose sensitive data on an undisclosed number of people.
In a press release, published in Spanish on the company’s website, Endesa Energia said it had detected “unauthorized and illegitimate access” to its commercial platform.
“Despite the security measures implemented by this company,” the anonymous threat actors managed to access and exfiltrate certain personal data belonging to the company’s customers, including contact data, ID cards, and contract data from Endesa Energia. Even worse, the attackers stole the payment information (mainly IBAN numbers), but the passwords were not recovered, so the hackers should not have access to people’s accounts.
Data for sale
A thorough investigation is currently underway, but to resolve the incident, Endesa Energia removed the hacker from its systems, analyzed logs to see the extent of the damage caused and informed affected customers.
We don’t know exactly how many people are affected by this breach, but Spanish law enforcement and data monitoring organizations have also been informed.
So far, there is no evidence that the data was misused or sold on the dark web, the announcement further explains. However, BeepComputer found a database for sale on the dark web, appearing to be from this incident.
In a new thread on an underground forum, a cybercriminal is offering the database, believed to contain 20 million records, to a single, exclusive buyer. The announcement states that the database contains approximately 1TB of SQL files.
Endesa warns that scammers could attempt to “impersonate or impersonate” users, publish the data or use it in phishing attacks. “This is why we recommend that you pay particular attention to possible suspicious communications that you may receive in the coming days and report any anomalies or distrust that you may detect in this regard,” we read in the automatically translated announcement.
Via BeepComputer
The best antivirus for every budget
Follow TechRadar on Google News And add us as your favorite source to get our news, reviews and expert opinions in your feeds. Make sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp Also.
