UK Power Grid Middleman hit by cyber attack


Elexon, a middleman in the UK power grid network, disclosed that it was affected by a cyber-attack.

The company posted a message on its website about the incident that had affected only its internal IT network, email server and employee laptops.

The company’s email server was taken down, cutting employees off from crucial communications.

Elexon said that the systems that managed the UK’s electricity transit were unaffected.

Later another message was posted by the company stating that they have identified the main cause of the incident, and was working to restore its internal network and employee laptops.

Even though the nature of the attack was not mentioned by the company, according to some experts, based on the destructive nature of the attack, it might be caused by ransomware.

The threat intelligence company Bad Packets said that Elexon was running an outdated version of Pulse Secure, an enterprise-level SSL VPN server that allows employees to access internal networks across the internet.

A major vulnerability was disclosed that affects Pulse Secure VPNs last summer and Elexon was running the outdated version.

US and UK cyber-security agencies have sent multiple alerts about this vulnerability which was tracked as CVE-2019-11510, as it had been commonly exploited to breach corporate networks and install ransomware.

Elexon is a critical player on the UK electricity market and it manages electricity supply and demand and moves power around the network whenever required.

Priyanka R
Cyber Security Enthusiast, Security Blogger, Technical Editor, Author at Cyber Safe News

    HTTP status codes used to control malware implants

    Previous article

    European supercomputers hacked to mine cryptocurrency

    Next article

    You may also like

    More in Ransomware


    Leave a reply

    Your email address will not be published. Required fields are marked *