Nova Scotia Power notifying customers whose data was affected by cyber breach
Nova Scotia Power has taken steps to notify customers whose data was compromised in a recent cyber breach. The breach, discovered last month, involved an unauthorized third party accessing the utility’s systems and obtaining customer information such as addresses, phone numbers, birth dates, driver’s license and social insurance numbers, and banking information. The extent of the information taken varies depending on what each customer had provided to the utility.
Although there is no evidence that the data has been misused, Nova Scotia Power is taking precautionary measures. The utility has partnered with TransUnion to offer affected individuals a free, two-year subscription to a credit monitoring service. Additionally, Nova Scotia Power is working with cybersecurity experts to assess the breach’s extent and to safely restore and rebuild compromised systems.
The breach occurred around March 19, 2025, although it was not discovered until April 25. In response, Nova Scotia Power has suspended billing and shut down its online customer portal, MyAccount. Despite these measures, the company assures customers that no services have been disrupted, and late fees have been paused.
Affected customers can expect to receive notification by mail in the coming days, along with information on how to register for the credit monitoring service. Nova Scotia Power advises customers to remain vigilant against any unsolicited communications claiming to be from the company and requesting personal information.
If customers do not receive a notification in the mail, it means that Nova Scotia Power has determined their personal data was not impacted by the breach. While speculation has circulated about a potential ransomware attack, the company has refrained from making any definitive statements until the investigation is complete.
Overall, Nova Scotia Power is taking proactive steps to address the breach and ensure the security of customer data. By providing credit monitoring services and maintaining transparency with customers, the utility aims to mitigate any potential risks resulting from the cyber incident.
