Cybersecurity Breach: Nova Scotia Power Under Fire

As the world becomes increasingly digital, the threat of cybersecurity breaches looms large. Recently, Nova Scotia Power, a utility company serving over 500,000 customers, fell victim to a ransomware attack. The incident has left 280,000 customers vulnerable, with their personal data, including social insurance numbers, at risk of being compromised.

A Call for Answers

Provincial politicians are demanding answers from Nova Scotia Power, with the public accounts committee grilling the company’s CEO, Peter Gregg, and other staff members. The committee meeting, held on Wednesday morning, aimed to shed light on the circumstances surrounding the breach and the measures being taken to protect customers from financial harm.

Gregg revealed that the ransomware attack affected almost half of the utility’s customers, including 140,000 who had shared their social insurance numbers with the company. The CEO’s admission has sparked concern and outrage, with many questioning why the company was storing such sensitive information in the first place.

A Timeline of Events

According to Chris Heck, chief digital officer with Nova Scotia Power’s parent company Emera, the unusual activity on the company’s server was first detected on April 25. However, further investigation revealed that the cyber-thieves had gained access to the system as early as March 19. This raises questions about the company’s cybersecurity protocols and its ability to detect and respond to threats in a timely manner.

Investigations Underway

The federal privacy commissioner, Philippe Dufresne, has launched an investigation into the ransomware attack. The probe was initiated after the commissioner received complaints about the security breach, which was reported in late April. The investigation aims to determine the cause of the breach and whether Nova Scotia Power had adequate safeguards in place to protect customer data.

Demand for Transparency

NDP Leader Claudia Chender pressed Gregg and Heck for answers on why the company was storing social insurance numbers. However, the two men declined to comment, citing the ongoing investigation. This lack of transparency has only added to the public’s frustration and concern, with many calling for greater accountability from the company.

Takeaways and Concerns

The Nova Scotia Power cybersecurity breach serves as a stark reminder of the importance of robust cybersecurity measures. As our lives become increasingly digital, the risk of cyber threats grows. The incident raises several concerns, including:

• The storage of sensitive customer data, such as social insurance numbers
• The adequacy of cybersecurity protocols and response times
• The need for greater transparency and accountability from companies handling personal data

As the investigation into the breach continues, one thing is clear: the public deserves answers, and companies must prioritize cybersecurity to protect their customers’ sensitive information.

Stay Informed

For the latest updates on the Nova Scotia Power cybersecurity breach and other news, subscribe to our daily newsletter. Get the day’s top news, political, economic, and current affairs headlines delivered to your inbox once a day.

Trending Now

• 3 missing sisters found dead in Washington state, father wanted for murders
• ‘Let truth be revealed’: What was said at candlelight vigil for missing N.S. kids

More on Crime

For more articles on crime and cybersecurity, visit our Crime section.

More Videos

Watch our latest videos on cybersecurity and crime:

• Cybersecurity 101: How to protect yourself online
• The rise of ransomware attacks: What you need to know

© 2025 The Canadian Press

Content originally published by globalnews.ca