Energy One, an Australian company that provides software products and services to the energy sector, has been hit by a cyberattack.
In a statement issued on Monday, the company said the incident was detected on August 18 and it impacted some corporate systems in Australia and the UK.
“As part of its work to ensure customer security, Energy One has disabled some links between its corporate and customer-facing systems,” Energy One said.
Energy One is investigating the incident in an attempt to determine whether personal information and customer-facing systems have been impacted. The company is also working on determining the attacker’s initial point of entry.
While the firm has not shared any additional details about the attack, its statement suggests that it may have been targeted in a ransomware attack.
Cybersecurity experts have been called in to assist with the investigation and authorities in Australia and the UK have been notified.
A recent report published by British threat intelligence company Searchlight Cyber showed that threat actors have been offering initial access into energy sector organizations around the world for prices ranging between $20 and $2,500.
Cybercriminals can gain entry through RDP access, compromised credentials, and device vulnerabilities (such as Fortinet products).
Related: Malicious QR Codes Used in Phishing Attack Targeting US Energy Company
Related: 2022 ICS Attacks: Fewer-Than-Expected on US Energy Sector, But Ransomware Surged
Related: Exploited Solar Power Product Vulnerability Could Expose Energy Organizations to Attacks
Related: Gas Stations Impacted by Cyberattack on Canadian Energy Giant Suncor

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.
More from Eduard Kovacs
- CISA Warns of Old JBoss RichFaces Vulnerability Being Exploited in Attacks
- NIST Publishes Final Version of 800-82r3 OT Security Guide
- Johnson Controls Hit by Ransomware
- Verisoul Raises $3.25 Million in Seed Funding to Detect Fake Users
- Government Shutdown Could Bench 80% of CISA Staff
- Google Rushes to Patch New Zero-Day Exploited by Spyware Vendor
- macOS 14 Sonoma Patches 60 Vulnerabilities
- New GPU Side-Channel Attack Allows Malicious Websites to Steal Data
Latest News
- Bankrupt IronNet Shuts Down Operations
- AWS Using MadPot Decoy System to Disrupt APTs, Botnets
- Generative AI Startup Nexusflow Raises $10.6 Million
- In Other News: RSA Encryption Attack, Meta AI Privacy, ShinyHunters Hacker Guilty Plea
- Researchers Extract Sounds From Still Images on Smartphone Cameras
- National Security Agency is Starting an Artificial Intelligence Security Center
- CISA Warns of Old JBoss RichFaces Vulnerability Being Exploited in Attacks
- Hackers Set Sights on Apache NiFi Flaw That Exposes Many Organizations to Attacks
