The Conti ransomware organization has claimed responsibility for a cyberattack on Nordex, the world’s largest wind turbine maker, which was forced to lock down IT systems and remote access to controlled turbines earlier in the month.
Nordex is one of the world’s leading innovators and builders of wind turbines, with over 8,500 workers in different parts of the world. Nordex said on April 2nd that they had been the victim of a cyberattack that was spotted early and that the business had shut down its IT systems to prevent the attack from spreading.
According to the original press statement by Nordex, the intrusion was discovered early on, and urgent reaction steps were implemented in accordance with crisis management guidelines. The firm chose to shut down IT systems across numerous locations and business units as a preventive step.
Nordex issued an updated statement yesterday, stating that remote access to controlled turbines had been prohibited to protect clients’ assets. They also claim that their research revealed the incident was limited to their internal systems and did not extend to their customers’ assets.
“In close cooperation with relevant authorities, the emergency response team of internal and external IT experts has been performing extensive investigations and forensic analysis,” reads Nordex’s update on the cyberattack. “Preliminary results of the analysis suggest that the impact of the incident has been limited to internal IT infrastructure. There is no indication that the incident spread to any third-party assets or otherwise beyond Nordex’ internal IT infrastructure.”
Last November, the LockBit ransomware campaign attacked Vestas, a Danish wind turbine manufacturer. The Conti ransomware organization claimed responsibility for the recent Nordex hack. However, the ransomware group has not started leaking any data, implying that the firm is in talks with the threat actors or that no data was taken during the attack.