Nova Scotia Power Confirms Ransomware Attack, Stolen Customer Data Published

Nova Scotia Power has confirmed that it was the victim of a ransomware attack in March, during which hackers accessed and published sensitive customer information, including credit histories, social insurance numbers, and bank account data. The utility has not paid any ransom, following advice from law enforcement and a careful assessment of sanctions laws. The company has been working with third-party cybersecurity experts to restore and strengthen its systems and is actively assessing the scope of the breach. Affected customers have been notified and offered a two-year subscription to credit monitoring services through TransUnion at no cost. Nova Scotia Power has urged customers to remain vigilant against potential scams, including suspicious emails, texts, or calls claiming to be from the company. The breach was publicly acknowledged after the company initially disclosed the incident in late April.