Ethical Hacking News
Spanish energy firm Endesa has suffered a devastating cyber breach exposing full customer data, including contact details, national ID numbers, and payment information. The incident highlights the growing menace of cyber threats to critical infrastructure and underscores the need for robust security measures to protect sensitive data.
Endesa's customer data, including contact details, national ID numbers, and payment information, was stolen in a recent cyber breach. The attack, carried out by a threat actor, resulted in the exfiltration of over 1.05 terabytes of data from Endesa's commercial platform, affecting around 20,000 individuals. Endesa claims there is no evidence of any fraudulent use of the affected data at this time, but has activated security protocols to block access to compromised systems and notified authorities. The incident highlights the need for robust security measures to protect sensitive customer data from cyber threats.
In a shocking and disturbing revelation, the Spanish energy firm Endesa has disclosed that its customer data, including highly sensitive information such as contact details, national ID numbers, and payment information, was stolen by a threat actor in a recent cyber breach. This unprecedented incident highlights the growing menace of cyber threats to critical infrastructure and the need for robust security measures to protect sensitive data.
Endesa, one of Spain's largest and most prominent energy companies, serves over 10 million customers domestically and is a majority-owned subsidiary of Italian utility group Enel. With around 8,900 employees (as of 2024), the company has significant resources at its disposal to prevent such breaches. However, despite these measures, the threat actor successfully accessed and exfiltrated customer identification data, contact details, national ID numbers, contract data, and possibly even IBANs.
The attack, which occurred in 2026, is believed to have been carried out by a threat actor who claimed to have stolen over 1.05 terabytes of data from Endesa's commercial platform. The stolen data includes fresh information never seen before, with more than 20,000 individuals reportedly affected. The breach has left customers concerned and the company under scrutiny for its handling of sensitive customer information.
In a statement published on January 13, 2026, Endesa revealed that the security incident allowed unauthorized access to certain personal data of their customers related to their energy contracts. Despite the measures implemented by the company, evidence suggested that attackers had accessed and possibly exfiltrated customer identification, contact details, national ID numbers, contract data, and possibly IBANs.
However, it's worth noting that Endesa claims there is no evidence of any fraudulent use of the affected data at this time. The company has activated security protocols to block access to compromised systems, notified affected customers, and authorities including Spain's Data Protection Agency. Continuous monitoring is underway while investigations with suppliers continue.
The threat actor claimed responsibility for the breach on a cybercrime forum, boasting about accessing Endesa's entire database and stating that "no one has this database except me." The price of the stolen data was reported to be negotiable, while the total size was an astonishing 1,055,950,885,115 bytes.
Endesa urges its customers to remain vigilant to suspicious calls, emails, or messages. If they suspect any fraudulent activity, they are advised to report it to the Endesa call center at 800.760.366 and never share personal or sensitive information with unknown contacts.
To mitigate potential risks, the company has confirmed that all operations and services continue to run normally.
The incident highlights the need for robust security protocols to protect customer data from cyber threats. As the digital landscape continues to evolve, companies like Endesa must prioritize data protection and invest in measures to safeguard sensitive information against sophisticated attacks.
Related Information:
https://www.ethicalhackingnews.com/articles/Theft-of-Full-Customer-Data-from-Spanish-Energy-Firm-Endesa-A-Devastating-Cyber-Breach-Exposes-Sensitive-Information-ehn.shtml
https://securityaffairs.com/186861/cyber-crime/threat-actor-claims-the-theft-of-full-customer-data-from-spanish-energy-firm-endesa.html
Published: Tue Jan 13 14:07:10 2026 by llama3.2 3B Q4_K_M
