On Monday 29th of November 2021, Vestas, a Danish manufacturer, seller, installer, and servicer of wind turbines confirmed they had suffered a ransomware attack on Friday, 19th of November 2021 which resulted in Vestas shutting down their IT systems across multiple business units and locations in the hope to contain the ransomware.
Vestas revealed they had been working with their external partners to restore their normal operations since the incident and they have conducted extensive investigations, forensics, restoration activities and hardening of their IT systems and IT infrastructure in preparation of all their systems being up and running again.
“We have been through some tough days since we discovered the cyber incident, and Executive Management and the Board of Directors are thus very pleased that the incident didn’t impact wind turbine operations and almost all of our IT systems are running again.” – Henrik Andersen, President and Chief Executive Officer.
Currently there has been no indication that the incident has impacted customer and supply chain operations. Vestas are still conducting further investigation to determine what kind of data has compromised during the incident, although for now it appears that the data has been found to be compromised is mainly relates to Vestas’ internal matters.