- Endesa Energia suffered unauthorized access, exposing customer data and IBAN numbers
- Hackers Allegedly Sell 20 Million Records and 1TB SQL Files on Dark Web
- The company warns of risks of phishing and identity theft; ongoing investigation
Endesa Energia, the retail division of one of Europe’s largest energy suppliers, Endesa, SA, has confirmed that it recently suffered a cyber attack in which it lost confidential data of an undisclosed number of people.
In a press release, published on the company’s website, Endesa Energía said it had detected “unauthorized and illegitimate access” to its commercial platform.
“Despite the security measures implemented by this company,” anonymous threat actors managed to access and exfiltrate certain personal data belonging to the company’s customers, including contact data, identification cards, and data related to Endesa Energia contracts. Even more painful, the attackers stole payment information (mainly IBAN numbers), but did not take passwords, so hackers should not have access to people’s accounts.
Data for sale
A full investigation is currently underway, but to address the incident, Endesa Energia expelled the hacker from its systems, analyzed logs to see how much damage had been caused, and notified affected customers.
We do not know exactly how many people are affected by this breach, but Spanish authorities and data watchdogs have also been notified.
So far, there is no evidence that the data has been abused or sold on the dark web, the announcement explains. However, beepcomputer I found a database for sale on the dark web, which appears to come from this incident.
In a new thread on an underground forum, a cybercriminal offers the database, which supposedly contains 20 million records, to a single exclusive buyer. The announcement says that the database contains about 1 TB of SQL files.
Endesa warns that criminals could try to “usurp or impersonate” users, publish the data or use it in phishing attacks. “That is why we recommend that you pay special attention to possible suspicious communications that you may receive in the coming days and that you report any anomaly or distrust that you detect in this regard,” reads the automatically translated announcement.
Through beepcomputer
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds. Be sure to click the Follow button!
And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp also.
