Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Application Security

German Wind Turbine Firm Hit by ‘Targeted, Professional Cyberattack’

German wind turbine giant Deutsche Windtechnik has issued a notification to warn that some of its IT systems were impacted in a targeted professional cyberattack earlier this month.

German wind turbine giant Deutsche Windtechnik has issued a notification to warn that some of its IT systems were impacted in a targeted professional cyberattack earlier this month.

The incident, which the company says occured on April 11, forced incident responders to switch off the remote data monitoring connections to the wind turbines for security reasons. Deutsche Windtechnik says it reactivated the connections two days later.

“We are very happy that the wind turbines that we look after did not suffer any damage and were never in danger,” the company said in a statement.

Deutsche Windtechnik also announced that it managed to resume client operational maintenance activities on April 14, with only minor restrictions.

The company says all of its IT systems were assessed in a secure environment and the issues were identified and isolated. Furthermore, the wind turbine giant has increased the security of its systems following the incident.

“The forensic analysis has been completed and the result has shown that this was a targeted professional cyberattack,” Deutsche Windtechnik said. The company says it still hasn’t fully restored its systems.

While Deutsche Windtechnik did not say what type of cyberattack it fell victim to, there is a high probability that ransomware might have been involved, although no known ransomware groups have claimed the attack yet.

According to The Wall Street Journal, Deutsche Windtechnik, which lost control of roughly 2,000 turbines during the attack, indeed fell victim to ransomware, but was able to restore its systems without having to contact the attackers.

Additionally, the attack on Deutsche Windtechnik happened shortly after wind turbine maker Nordex SE fell victim to the Conti ransomware criminal gang. In early March, wind turbine manufacturer Enercon GmbH lost remote connection to roughly 5,800 turbines after Viasat’s satellite network was hacked.

Related: Conti Ransomware Activity Surges Despite Public Exposure

Related: Why Ransomware Response Matters More Than Protection

Related: FBI Shares Information on BlackCat Ransomware Attacks

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Data Breaches

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.

Network Security

NSA publishes guidance to help system administrators identify and mitigate cyber risks associated with transitioning to IPv6.

CISO Strategy

Cybersecurity-related risk is a top concern, so boards need to know they have the proper oversight in place. Even as first-timers, successful CISOs make...

Nation-State

The North Korean APT tracked as TA444 is either moonlighting from its previous primary purpose, expanding its attack repertoire, or is being impersonated by...

Malware & Threats

Microsoft plans to improve the protection of Office users by blocking XLL add-ins from the internet.

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...