Australian Energy Software Firm Energy One Hit by Cyberattack

Energy One, an Australian company that provides software products and services to the energy sector, has been hit by a cyberattack.

In a statement issued on Monday, the company said the incident was detected on August 18 and it impacted some corporate systems in Australia and the UK.

“As part of its work to ensure customer security, Energy One has disabled some links between its corporate and customer-facing systems,” Energy One said.

Energy One is investigating the incident in an attempt to determine whether personal information and customer-facing systems have been impacted. The company is also working on determining the attacker’s initial point of entry. 

While the firm has not shared any additional details about the attack, its statement suggests that it may have been targeted in a ransomware attack.

Cybersecurity experts have been called in to assist with the investigation and authorities in Australia and the UK have been notified. 

A recent report published by British threat intelligence company Searchlight Cyber showed that threat actors have been offering initial access into energy sector organizations around the world for prices ranging between $20 and $2,500. 

Cybercriminals can gain entry through RDP access, compromised credentials, and device vulnerabilities (such as Fortinet products). 

Related: Malicious QR Codes Used in Phishing Attack Targeting US Energy Company

Related: 2022 ICS Attacks: Fewer-Than-Expected on US Energy Sector, But Ransomware Surged

Related: Exploited Solar Power Product Vulnerability Could Expose Energy Organizations to Attacks

Related: Gas Stations Impacted by Cyberattack on Canadian Energy Giant Suncor