May 23rd, 2025 | Alex Harris | Seaside FM News
Nova Scotia Power released an update Friday afternoon on the cyber attack suffered by the company around May 19th.
In the statement, it confirms that they have been a victim of a sophisticated ransomeware attack.
The company says that they made no payments to the hacker after reviewing applicable sanctions and laws, and seeking guidance from law enforcement.
The threat actor published the information online. The stolen information includes bank account and Social Insurance numbers of NS Power customers.
Notifications have been mailed to impacted account holders, which include detailed information about resources and support. Arrangements have been made with the consumer reporting agency, TransUnion, to provide impacted individuals with a two-year subscription to a comprehensive credit monitoring service (TransUnion myTrueIdentity®) at no cost.
Since the incident, NS Power has been working with third party cyber security actors to restore and strengthen systems while investigating the incident.
The company is reminding customers who receive emails, texts, and phone-calls that appear to be from the utility to be cautious. Do not click links, download attachments, or give personal information without verifying the source.
In the statement, the utility apologized for the incident.
“We remain sincerely sorry that this issue has occurred. Protecting the privacy and security of information held by Nova Scotia Power is something we take very seriously.”
