The Conti ransomware gang has claimed responsibility for a cyberattack that forced wind turbine giant Nordex to shut down internal systems on March 31.
The incident, the company revealed in early April, was identified at an early stage, but resulted in multiple systems across Nordex’s branches being taken offline.
Earlier this week, the wind turbine maker said it was still working on restoring IT systems to return operations to normal, but did not provide an estimation as to when that might happen.
However, the company also said that the incident only impacted its internal systems and that wind turbine farms continued operating normally. Communication with customers wasn’t affected either, the company said.
[ READ: Ransomware Gang Leaks Files Stolen From Industrial Giant Parker Hannifin ]
While Nordex did not say what type of cyberattack it suffered, the fact that it shut down numerous systems suggested right from the start that ransomware might have been involved.
This supposition was apparently confirmed this week, when the Conti cybergang, which is known for many high-profile ransomware attacks, claimed responsibility for the incident.
Conti “announced” the Nordex hack on their leaks site on the Tor network, but did not say whether any data was stolen during the intrusion.
The entry on Conti’s site is dated April 11, but it appears that it was made public on April 14. SecurityWeek checked the site on Wednesday, when Nordex published a security incident update, and found no mention of the attack on the wind turbine giant.
The US government issued a warning on Conti ransomware attacks in early March, roughly two weeks after the cybercrime ring announced support for the Russian invasion of Ukraine. The group also had to deal with several source code and internal chat leaks in retaliation to its pro-Russian position.
Related: Ransomware Attack Disrupts Manufacturing at KP Snacks
Related: Logistics Firm Hellmann Scrambling to Recover From Cyberattack
Related: Ransomware Operators Leak Data Stolen From Wind Turbine Giant Vestas

More from Ionut Arghire
- Blackpoint Raises $190 Million to Help MSPs Combat Cyber Threats
- ‘Asylum Ambuscade’ Group Hit Thousands in Cybercrime, Espionage Campaigns
- Google Cloud Now Offering $1 Million Cryptomining Protection
- Pharmaceutical Giant Eisai Takes Systems Offline Following Ransomware Attack
- North Korean Hackers Blamed for $35 Million Atomic Wallet Crypto Theft
- Cisco Patches Critical Vulnerability in Enterprise Collaboration Solutions
- Android’s June 2023 Security Update Patches Exploited Arm GPU Vulnerability
- US, Israel Provide Guidance on Securing Remote Access Software
Latest News
- In Other News: AI Regulation, Layoffs, US Aerospace Attacks, Post-Quantum Encryption
- Blackpoint Raises $190 Million to Help MSPs Combat Cyber Threats
- Google Introduces SAIF, a Framework for Secure AI Development and Use
- ‘Asylum Ambuscade’ Group Hit Thousands in Cybercrime, Espionage Campaigns
- Evidence Suggests Ransomware Group Knew About MOVEit Zero-Day Since 2021
- SaaS Ransomware Attack Hit Sharepoint Online Without Using a Compromised Endpoint
- Google Cloud Now Offering $1 Million Cryptomining Protection
- Democrats and Republicans Are Skeptical of US Spying Practices, an AP-NORC Poll Finds
