Hackers Claim Massive Data Theft from Sweden’s Power Grid Operator

Svenska kraftnät, the operator of Sweden’s national power grid, disclosed that it experienced a significant data breach after unauthorised actors compromised its external file transfer platform and obtained sensitive data.

 

Svenska kraftnät is a state-owned enterprise that operates Sweden’s national high-voltage electricity transmission system. Its core responsibilities include managing and developing the grid infrastructure, maintaining balance between electricity generation and demand, and overseeing international power interconnections to ensure a secure and reliable electricity supply.

 

In a data security incident notice, Svenska kraftnät said that on October 25, it identified a data breach affecting its external file transfer solution. The company immediately launched an investigation, with assistance from external cyber security experts, to determine the nature and scope of the incident.

 

In a statement shared with the media, Cem Göcgören, Head of Information Security at Svenska kraftnät, said, “We take this intrusion very seriously and have taken immediate action. We understand that this may cause concern, but the electricity supply has not been affected by this intrusion.”

 

Göcgören added that preliminary investigation confirms that “business-critical systems have not been affected.”

 

Also, the incident did not affect the electricity transmission or the function of the electricity system.

 

 

 

Recently, the Everest ransomware group claimed responsibility for a cyberattack on Svenska kraftnät, listing the Swedish national grid operator as a victim on its data leak site. The group said it had obtained 280GB of confidential company data and threatened to publish it unless its ransom demands were met.

 

Svenska kraftnät said it is cooperating with the police and national cybersecurity authorities to assess the scope of the breach and identify what data may have been compromised.