The Spanish company Iberdrola, which is a producer and supplier of electricity, was subjected to a cyber attack. This was reported by the website bullfrag.com with reference to the newspaper elDiario.
According to the newspaper, the incident occurred on March 15. According to an investigation by the National Cybersecurity Institute (Incibe), as a result of the cyberattack, the personal data of 1.3 million Iberdrola customers were disclosed. In particular, the attackers gained access to information about identity cards, home addresses, phone numbers, and e-mail. Information about bank accounts or credit cards of customers was not disclosed.
The company confirmed the hack and promptly warned the affected users. The Iberdrola Group assured that it is taking appropriate measures to prevent similar attacks in the future. Iberdrola experts associate this incident with a DDoS attack on the website of the Congress of Deputies.
Hackers often use these types of cyberattacks to collect data and then use it in phishing campaigns. The goal of cybercriminals in most cases is to steal banking information from users. Therefore, Iberdrola also advised affected users not to trust suspicious emails, messages or calls requesting financial data.