Greece’s largest natural gas supplier, DESFA, said Saturday it fell victim to a cyberattack on part of its IT infrastructure by cybercriminals who tried to gain access to electronic files and with a confirmed impact on the availability of certain systems and possible leakage of a number of files and data.

Ragnar Locker ransomware group claimed them as its victim on Friday by leaking some of the DEFSA data.

“We managed to ensure and continue the operation of the National Natural Gas System (NSGS) in a safe and reliable manner,” the company said in an advisory. “The management of DESFA continues to operate smoothly and DESFA continues to supply natural gas to all entry and exit points of the country safely and adequately. We are investigating the root causes of the attack and have mobilized teams of technical and specialist experts to assist us in this matter and in getting the systems back up and running as soon as possible.”

DEFSA said in order to protect its customers and partners, the company decided to disable most of its IT services.

“We are gradually restoring our information and operating systems,” the company said.

Schneider Bold

DEFSA said it has already informed all the competent authorities and organizations and they will continue to work closely with the Ministry of Digital Governance, the Data Protection Authority, the Electronic Crime Prosecution of the Hellenic Police, the General Staff of National Defense (GEETHA) as well as the Ministry of the Environment & of Energy and the Energy Regulatory Authority to resolve the issue and minimize any potential impact.

“DESFA remains steadfast in its position not to engage with cybercriminals,” the company said.

“This attack is a worrying reflection of the rapidly growing ransomware market, particularly among utilities, with major incidents now being reported regularly,” said Chris Vaughan, area vice president of technical account management, EMEA, at security provider, Tanium. “These attacks are growing in sophistication – with criminal gangs becoming more targeted in their approach and increasing the huge sums of money that they are demanding.

“Protecting an organization from an attack such as ransomware comes down to ensuring security defenses are up to date, appropriately configured and by making sure employee behavior is driven towards best practices. Focusing on these areas will help to minimize the impact of the many security issues which are caused by gaps in basic IT hygiene. These weak points can be identified and fixed before a problem occurs if organizations have the correct level of visibility and control into the IT environment, but many don’t.”


Pin It on Pinterest

Share This