News
Supply, Tech
Share
Facebook
Twitter
LinkedIn
Email
April 16, 2020

Wind giant EDP hit by Ragnar Locker ransomware attack

By Molly Lempriere
Image: EDP.
Image: EDP.

European energy giant Energias de Portugal (EDP) was hit by a ransomware attack on Easter Monday, the company has confirmed.

Reported initially by the Portuguese media, attackers used Ragnar Locker ransomware to steal over 10TB of sensitive company files. They are reportedly asking for $10.9 million (£8.2 million), or they will leak the information they have stolen. However, EDP has stated that they are not aware of any such demand.

The company, which operates in 19 countries and four continents including the UK, operates over 26GW of installed wind capacity. This makes it the fourth largest wind power operator in the world, with nearly a billion electricity customers worldwide.

In a statement sent to Current±, the company said: “EDP was the target of a computer attack on its corporate network this Monday, April 13th, which conditioned part of its services and operations. The power supply service and critical infrastructure, however, have never been compromised and we continue to ensure this operation as normal.”

However, according to TechRadar, the attackers posted on Ragnarok’s leak site saying they had downloaded over 10TB of private information from EDP’s servers, threatening to leak the information to “huge and famous journals and blogs” as well as notifying EDP’s clients, partners and competitors.

The company reportedly has 20 days in which to pay the attackers to ensure the data – which the attackers claim is on billing, contracts, transactions, clients and partners – isn’t released.

The Portuguese company is yet to confirm its next steps, stating: “The situation is currently being assessed and we have teams dedicated to restoring the normal functioning of the systems as soon as possible – this re-establishment, in particular of services and operations targeted at customers who have undergone some conditioning, is our first priority.

“EDP is working with the authorities, that were immediately notified of the attack to identify the origin and anatomy of the attack. At this moment, we have no knowledge of a ransom demand.”

The ransomware sample was found by MalwareHunterTeam and BleepingComputer.

Tags
cyber attack, cybersecurity, EDP, EDPR, ransomware, security, wind
Similar

Stay Current!

Subscribe to email newsletter!
Subscribe
Most Popular
a close up of a pod point ev charger

Pod Point becomes first company to trade energy under new wholesale market regulations

1024px-Road_beside_the_Interconnector_-_geograph.org.uk_-_6153060

GB-France interconnector trip sees batteries step in

Greg-Jackson_CEO-and-founder-of-Octopus-Energy-1-1

Net zero at risk if energy bills rise, says Octopus

pxclimateaction-7129875_1280

UK submits Nationally Determined Contribution committing to 81% emissions reduction

rsteds-Hornsea-3-Onshore-Converter-station-site-near-Norwich-in- (1)

Renewable UK: Planning changes should support co-location with offshore wind

Current is part of the Informa Markets Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
Copyright © 2025. All rights reserved. Informa Markets, a trading division of Informa PLC.