Endesa Confirms Cybersecurity Breach Exposing Customer Data

CyberDefender 3 mins0

A major cyberattack on Endesa’s commercial platform has exposed sensitive customer data, including identity and banking details, though account passwords appear to be safe for now. The company is responding with defensive measures and authorities are involved in investigations. Consumer groups are pushing for more scrutiny given the potential scope of the breach.

  • Spanish utility Endesa and its regulated operator Energía XXI have confirmed a security breach in which unauthorized parties gained access to their internal systems.
  • The company detected the intrusion and began notifying affected customers and publicizing the incident.

Who’s Affected

  • The breach impacts a significant portion of Endesa’s customer base, potentially millions of users of electricity and gas contracts in Spain and Portugal.

What Data Was Exposed

According to investigations and company notifications:

  • Personal identification data such as names and national ID numbers (DNI).
  • Contact details like email addresses and phone numbers.
  • Contract-related information tied to energy services.
  • Banking details, including IBANs and possible payment information.
  • Login passwords or direct access credentials were not compromised, according to Endesa.

Company Response and Mitigation

  • Endesa says it activated emergency response protocols immediately, blocked compromised internal access points, and is continuously monitoring systems for suspicious activity.
  • The company has notified the Spanish Data Protection Agency (AEPD) and is cooperating with authorities.

Consumer & Advocacy Reaction

  • Spanish consumer group FACUA has called for an investigation by the data protection authority to clarify the extent and seriousness of the breach.

Risk and Next Steps for Customers

  • Endesa warns that even though no fraudulent use of the data has been confirmed yet, exposed information could increase the risk of fraud, identity theft, phishing, or spam campaigns.
  • Customers are being urged to be vigilant about suspicious communications and report anomalies promptly.

CyberDefender