Conpet, Romania’s nationwide oil pipeline operator, has disclosed {that a} cyberattack disrupted its enterprise techniques and took down the corporate’s web site on Tuesday.
Conpet operates practically 4,000 kilometers of pipeline community, supplying home and imported crude oil and derivatives, together with gasoline and liquid ethane, to refineries nationwide.
In a Wednesday press launch, the corporate mentioned the incident affected its company IT infrastructure however did not disrupt its operations or its means to satisfy its contractual obligations.
Conpet added that the cyberattack additionally took down its web site and that it is now investigating the incident and restoring affected techniques with the assistance of nationwide cybersecurity authorities.
The pipeline operator has additionally notified the Directorate for Investigating Organized Crime and Terrorism (DIICOT) and filed a prison criticism relating to the incident.
“We notice that the operational applied sciences (SCADA System and Telecommunications System) weren’t affected, so the corporate’s core enterprise, consisting of the transport of crude oil and gasoline by the Nationwide Oil Transport System, is working usually and there aren’t any disruptions in its operation,” it mentioned. “Because of this incident, the corporate’s web site www.conpet.ro can’t be accessed throughout this era.”
Whereas the corporate has but to reveal the character of the cyberattack, the Qilin ransomware gang has claimed duty and added Conpet to their darkish internet leak website earlier right now.
​The menace actors additionally declare they’ve stolen practically 1TB of paperwork from Conpet’s compromised techniques and leaked over a dozen images of inner paperwork containing monetary info and passport scans as proof of the breach.
Qilin emerged in August 2022 as a Ransomware-as-a-Service (RaaS) operation underneath the “Agenda” title. During the last 4 years, it has claimed duty for practically 400 victims, together with high-profile organizations similar to Nissan, Japanese beer firm Asahi, publishing large Lee Enterprises, pathology companies supplier Synnovis, and Australia’s Courtroom Providers Victoria.
BleepingComputer reached out to Conpet with questions concerning the incident, however a response was not instantly obtainable.
This cyberattack follows ransomware assaults on Romanian Waters (Romania’s water administration authority) and Oltenia Power Complicated (the nation’s largest coal-based power producer) in December.
In December 2024, Electrica Group (a serious Romanian electrical energy provider and distributor) was additionally breached in a Lynx ransomware assault, whereas over 100 Romanian hospitals have been knocked offline in February 2024 after a Backmydata ransomware assault took down their healthcare administration techniques.
Fashionable IT infrastructure strikes quicker than guide workflows can deal with.
On this new Tines information, learn the way your group can scale back hidden guide delays, enhance reliability by automated response, and construct and scale clever workflows on high of instruments you already use.
