Nova Scotia Power agrees to beef up security after customer data breached | CBC News
The power utility says it will delete customer social security numbers it has on file, and will conduct an external audit that will be shared with Canada’s privacy commissioner by the end of October.
Utility says it will delete customer social security numbers it has on file
Listen to this article
Estimated 1 minute
The audio version of this article is generated by AI-based technology. Mispronunciations can occur. We are working with our partners to continually review and improve the results.
Canada’s privacy commissioner says Nova Scotia’s largest power utility will strengthen its security following a cyberattack last year.
Nova Scotia Power sent a compliance letter to commissioner Philippe Dufresne saying it will delete customer social security numbers it has on file.
The utility says in the letter it will also provide Dufresne’s office with the findings of an external security audit by the end of October.
In March 2025, a hacker accessed the data of hundreds of thousands of the utility’s customers.
The company’s former CEO has said the cyberattack was likely conducted by a Russia-based actor.
The attack disrupted automated billing for nearly a year, with many customers complaining about inflated bills.
“We’ve learned a great deal from this incident and have taken steps to further enhance our cybersecurity and data governance practices to protect against this kind of criminal activity,” Nova Scotia Power CEO Vivek Sood said in a statement.
“We are committed to implementing all recommendations to protect our customers and our employees.”
MORE TOP STORIES