According to Nova Scotia Power, hackers accessed customer data stored on its servers around March 19. The stolen information includes names, dates of birth, phone numbers, email addresses, mailing and service addresses, power usage data, service requests, and payment or billing histories.
More sensitive details were also taken, including driver’s license numbers and Social Insurance Numbers. In some cases, bank account numbers used for pre-authorized payments were also exposed.
While the company says there is no evidence that the stolen information has been misused, it is offering two years of free credit monitoring to affected customers as a safety measure.
The total number of impacted individuals is still unknown. Nova Scotia Power currently serves around 550,000 customers across the province.
The company also clarified that the cyberattack did not affect its electricity services—there was no disruption to power generation, transmission, or distribution.
It remains unclear whether the breach was caused by a ransomware attack. So far, no ransomware group has claimed responsibility, which raises the possibility that negotiations may be ongoing or a ransom may have been paid to prevent data from being leaked.
Nova Scotia Power has declined to share any further information beyond what has been posted on its website.
Tags:
Cybercrime in World
