November 28, 2023 at 04:25PM
Slovenian power company HSE was targeted by a ransomware attack on Nov. 22, but power production was unaffected. Control was regained on Nov. 24, with authorities notified and third-party experts engaged to mitigate the attack’s effects. No ransom has been demanded yet, and the situation is believed to be under control, with only certain websites affected.
Key takeaways from the meeting notes:
1. HSE, a Slovenian power generation company, experienced a ransomware attack on Nov. 22, which compromised its systems but did not disrupt power production.
2. The attack was contained by Nov. 24, and HSE regained control of their systems.
3. The National Office for Cyber Incidents at Si-CERT and the Ljubljana Police Administration were notified about the attack.
4. HSE worked with third-party experts to mitigate the effects of the attack and prevent the spread of malware to other critical infrastructure systems in Slovenia.
5. At this point, no ransom has been demanded by the Rhysida ransomware gang, believed to be responsible for the attack.
6. It is still unclear if HSE has made contact with Rhysida.
7. The disruption caused by the attack is limited to the Šoštanj Thermal Power Plants and the Velenje Coal Mine websites.
8. HSE officials claim that the situation is under control.