Last updated 1 week ago
Romania's national oil pipeline operator Conpet S.A. confirmed that the Qilin ransomware gang stole company data in an attack last week. The company acknowledged the data theft but stated that its operational systems were not affected by the incident. Conpet is Romania's primary oil and petroleum products pipeline transportation company, operating approximately 2,000 km of pipelines across the country. The attack occurred despite the company's cybersecurity measures, highlighting the persistent threat ransomware groups pose to critical infrastructure operators in the energy sector.
Ransomware attack by Qilin gang
Critical infrastructure operators remain high-value targets for ransomware groups. The incident demonstrates that even with cybersecurity measures in place, determined threat actors can still compromise systems and exfiltrate data. Organizations in critical sectors should implement enhanced network segmentation to isolate operational technology from corporate networks, deploy advanced endpoint detection and response solutions, maintain offline backups, and conduct regular ransomware response exercises. The fact that operational systems were unaffected suggests some level of segmentation was in place, but data protection controls failed to prevent exfiltration.
Company
Industry
Location
Disclosed
Records Affected
Attack Vector
Threat Actor