Germany-headquartered wind turbine manufacturer, Nordex Group, experienced a cyber security incident on 31 March 2022.
Detected by the IT security team, the necessary response protocols were initiated and IT systems across multiple locations and business units were shut down.
Have you read?
Vestas reports personal data breach in recent cybersecurity attack
Proactive measures to cyber-secure utilities
In an updated statement, the company states: “To safeguard customer assets, remote access from Nordex Group IT infrastructure was disabled for turbines under contract.
“Nordex turbines continued operating without restrictions and wind farm communication with grid operators and energy traders was, and remains, unaffected.”
To ensure business continuity was not impacted, Nordex implemented alternative remote control services for most of the fleet.
Internal and external IT experts are busy performing investigations, with preliminary results suggesting that the impact of the incident has been limited to internal IT infrastructure.
“There is no indication that the incident spread to any third-party assets or otherwise beyond Nordex’s internal IT infrastructure,” adds the statement.
The company is in the process of restoring IT systems and has warned that customers, employees and other stakeholders may be affected by the shutdown.
The cyber intrusion was noted in an early stage, according to Nordex, and response measures were initiated quickly.
The Nordex Group will provide further updates when more information is available.