Canadian electric utility Nova Scotia Power said the recent cyberattack has caused some disruptions to its power meters, and the company is notifying impacted individuals, including in the United States.
The hacker attack did not result in any power outages, but Nova Scotia Power revealed on Tuesday that while its power meters have been accurately collecting energy usage data from homes and businesses, the communication between the meters and the company’s systems has been disrupted.
“As a result, we initially paused customer billing and have recently resumed billing with most customers receiving estimated bills until our systems are restored and meters begin communicating again,” the utility said.
Nova Scotia Power was targeted by hackers in April and an investigation showed that the company had been targeted in a ransomware attack that resulted in the theft of customer information.
Compromised records include name, date of birth, email address, phone number, mailing address, power consumption, and payment and billing data, as well as driver’s license, Social Insurance, and bank account numbers in some cases.
It’s unclear which ransomware group is behind the attack. Nova Scotia Power has shared no details on this aspect and no known threat actor appears to have taken credit for the attack.
The company serves approximately 550,000 customers, and its investigation to date has determined that roughly 280,000 are impacted.
While Nova Scotia Power does not provide electricity to the United States, its parent company, Emera, runs natural gas and electric utilities that serve 2.6 million customers in North America, including the US.
Nova Scotia Power told the Maine Attorney General’s Office that roughly 280,000 of its customers have been impacted, including 377 residents of the state of Maine. It’s unclear how many people are impacted in total in the United States.
In a recent update shared on its website, the company said former customers are also impacted by the data breach, in addition to current customers.
Learn More at SecurityWeek’s ICS Cybersecurity Conference
The leading global conference series for Operations, Control Systems and OT/IT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.
October 27-30, 2025 | Atlanta
www.icscybersecurityconference.com
Related: Critical Microsens Product Flaws Allow Hackers to Go ‘From Zero to Hero’
Related: Iranian Hackers’ Preferred ICS Targets Left Open Amid Fresh US Attack Warning
Related: Siemens Notifies Customers of Microsoft Defender Antivirus Issue
