Energy One, a major player in Australia’s energy sector, has fallen victim to a cyber attack impacting corporate systems across Australia and the United Kingdom.
Confirming the Energy One cyber attack, the company issued a statement on Monday through the Australian Stock Exchange, disclosing the intrusion that has impacted select corporate systems in the two countries.
Following the Energy One cyber attack, which occurred on August 18, the company is currently investigating the extent of the breach and the potential compromise of personal information.
To address the breach’s implications, Energy One has taken immediate countermeasures and has engaged CyberCX, a team of cyber security specialists, to lend their expertise to the situation. They have also alerted the Australian Cyber Security Centre and specific UK authorities.
As a precautionary step, the organization opted to deactivate connections between its corporate and customer-facing systems.
Energy One cyber-attack explained
Energy One has been a steadfast source of software and services for many clients, from startups to established multinationals in the energy sector, including energy retailers and generators in multiple regions through Australia, Asia, and Europe.
In an ASX Announcement posted on August 21, the company stated that the Energy One cyber attack was being investigated, and relevant authorities are trying to find the initial entry point into Energy One system. 
“Key lines of the ongoing inquiry and response include securing Energy One’s systems, establishing whether or what personal information and/or customer-facing systems have been affected, and the initial point of entry,” read the company statement.
“Energy One will continue to provide updated information as it gains greater clarity about the incident and the likely timeframe for its resolution“, the statement added.
Energy One cyber attack: The looming question!
Central to the investigation is whether customer-facing systems were compromised and, more importantly, whether personal information fell into the wrong hands.
Energy One acknowledges the gravity of this matter and its potential consequences for its clients, pledging to keep all stakeholders informed as the situation develops.
The company’s outreach, including servicing European customers from UK offices, has added complexity to the breach’s aftermath.
Notable names in its clientele include esteemed entities such as InterGen, a worldwide power generation firm with facilities in Australia and the UK, and SSE, Good Energy, and Crown Commercial Service (CCS) in the UK.
As the company gathers more insights and clarity about the Energy One cyber attack, it aims to provide regular updates on the investigations and the expected timeline for resolution.
Although the company has verified the occurrence of the attack, specific details such as the identity of the attacker and the extent of data impact have not been publicly disclosed.
This is an ongoing story, and we will update this post once we have more information about the attack and the attackers who orchestrated the Energy One cyber attack.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.