Endesa, the largest electricity company in Spain, confirmed a serious cyberattack that exposed personal data of its users. Hackers illegally accessed the company's commercial platform and its operator Energía XXI, stealing sensitive information related to energy contracts, such as basic identifications, contact information, ID numbers, contractual details and payments, including bank IBANs.
The company detected the intrusion despite its security measures, immediately blocked the compromised internal accounts, extracted records for detailed analysis and activated intensified monitoring to track additional suspicious activities. Endesa notified the Spanish Data Protection Agency and the relevant authorities, and directly contacted the affected customers. So far, they have not found evidence of fraudulent use of the stolen information, and daily operations continue without interruptions.
Meanwhile, a cybercriminal published samples on the dark web of what they claim is a massive Endesa database with 20 millions of records and 1TB in size, data that matches the leaked information according to preliminary investigation. Endesa and Energía XXI warn users about risks such as phishing, identity theft or bank fraud, and ask them to report any irregularities to a provided contact number; they recommend maximum vigilance to mitigate possible impacts.
Fountain: Bleeping Computer