Spanish Energy Company Endesa Hacked

Hackers stole complete customer information, including contact details, national identity numbers, and payment details.

Spanish energy company Endesa has notified customers that their information was compromised in a data breach.

Majority-owned by Italian utility company Enel Group, Endesa has approximately 10 million customers in Spain. It also serves over 10 million customers in other European countries.

In an incident notice on its website, the company said the data breach involved unauthorized access to its commercial platform. Customers of its gas distributor Energia XXI were also affected.

The hackers, the company says, accessed and likely exfiltrated basic customer identification information, contact details, national identification numbers (DNI), contract information, and payment details, including IBANs.

The energy giant says no passwords were compromised, that the incident was quickly contained, and that it has implemented additional safeguards.

“These measures include, among others, the immediate blocking of the compromised user accounts, the analysis of log ...