Nova Scotia Power, the leading electricity provider in the province, is currently managing the fallout of a major cyber incident that has compromised sensitive customer information and disrupted several IT systems.

Timeline of the Incident

The breach was identified in late April, but investigations have revealed that unauthorized access first occurred around March 19, 2025. Since the discovery, Nova Scotia Power has engaged external cybersecurity experts to assist in fortifying its systems and mitigating the impact.

Extent of the Breach

According to company officials, the cyberattack targeted specific IT systems. Fortunately, it did not impact electricity generation, transmission, or distribution services. Power supply has remained stable, with no reported outages or disruptions. As a precaution, late fees have been temporarily suspended, and billing activities, along with the online customer portal, have been paused.

The compromised data varies by customer but may include:

• Personal Information: Name, phone number, email address, and date of birth
• Contact Details: Mailing and service addresses
• Account Information: Program participation details, power usage history, service requests, payments, billing records, credit history, and correspondence
• Sensitive Data: Driver’s license numbers, Social Insurance Numbers, and for some, bank account information used for pre-authorized payments

Ongoing Investigation and Customer Communication

Nova Scotia Power is collaborating with cybersecurity professionals to assess the full scope of the breach and securely restore affected systems. While the company has not officially confirmed the nature of the attack, experts suggest that the incident bears similarities to ransomware breaches seen in the energy sector.

Impacted customers are being notified through postal mail, with detailed information about the breach and guidance for further steps. Customers who do not receive a notification are not believed to be affected.

Read More: Mastering Cybersecurity Architecture: A Comprehensive Guide

Support and Safety Measures

While there is currently no indication of misuse of the stolen data, Nova Scotia Power is taking preventive measures. All affected customers are being provided with a free two-year subscription to TransUnion’s myTrueIdentity® credit monitoring service to help detect any suspicious activity.

Additionally, the company urges all customers to stay alert for phishing attempts and fraudulent communications that may appear to come from Nova Scotia Power. Customers are advised to avoid clicking on suspicious links, downloading unexpected attachments, or sharing personal information in response to unverified requests.

A Broader Look at Cybersecurity Risks

This incident highlights the growing cybersecurity threats facing essential service providers. The energy sector, in particular, has become a frequent target for cybercriminals and state-sponsored attacks, aiming to disrupt critical infrastructure.

Although Nova Scotia Power has not officially declared this a ransomware attack, the disruption and nature of the stolen data reflect trends observed in similar breaches within the industry.

Next Steps and Transparency Pledge

Nova Scotia Power has committed to maintaining transparency as the investigation progresses. The company is cooperating with regulatory authorities and pledges to keep customers updated on any significant developments.

In the meantime, affected individuals are encouraged to monitor their accounts closely and take advantage of the support resources provided. Further updates are expected as more information becomes available.