Serbia’s government-controlled power utility, Elektroprivreda Srbije (EPS), has fallen victim to an unprecedented cyberattack involving a crypto virus. The attack, characterized as “unprecedented,” did not compromise electricity production, supply, or trade activities, according to EPS.
While the power system and data are secure, protective measures have been implemented, leading to the temporary shutdown of IT systems until experts confirm the virus’s elimination. The incident marks the third cyber threat to energy companies in Southeast Europe within 16 months, highlighting the region’s vulnerability and the ongoing need for robust cybersecurity measures.
EPS is actively recovering from the cyberattack, ensuring the continued functionality of its critical infrastructure. The company has taken comprehensive protective measures to safeguard its systems and protect the security of sensitive data. Despite the operational disruption to the bill payment portal, EPS reassures users that electricity production and supply remain unaffected. The power utility has communicated the cyberattack to relevant state authorities, who are implementing appropriate measures to address the incident and enhance cybersecurity in the energy sector. T
he cyber threat facing EPS mirrors similar incidents in the region, with Slovenia’s Holding Slovenske Elektrarne (HSE) experiencing a cyber threat in November and Montenegro’s Elektroprivreda Crne Gore (EPCG) encountering cyber threats in August of the previous year. The recurring nature of cyberattacks on energy companies underscores the importance of robust cybersecurity practices to safeguard critical infrastructure.
As EPS works to eliminate the virus and restore normal operations, the incident serves as a stark reminder of the persistent challenges faced by essential services in the evolving landscape of cyber threats.