The HSE successfully resolves a situation related to an information system hacking. Key power plant operation and trading systems are operational, the connection to ELES is established and the prospects for the smooth operation of the entire communication and information infrastructure are good, without major negative consequences.
“We would like to underline that HSE has been in control of the power plants of the HSE Group at all times, security has been adequately taken care of and the high water alarm system has been functioning smoothly. Electricity trading has not been interrupted and is ongoing, but as a precautionary measure we have slightly limited the execution of individual transactions,” says Dr Tomaž Štokelj, CEO of HSE.
With the help of internal and external experts, the conditions for key work processes were put in place over the weekend, so that the vast majority of employees were able to perform their tasks today.
HSE immediately informed all relevant institutions and business partners of the cyber-attack and took all necessary measures in this regard. A detailed analysis and diagnosis of the events of the past few days is still ongoing, and HSE is cooperating closely with the Police and the Government Information Security Office (URSIV), which has highlighted the cooperation with HSE and its proactivity as an example of good practice.
Dr Uroš Svete, Director of URSIV, adds: “The HSE Group has been acting transparently and in constant communication with cyber security stakeholders in the Republic of Slovenia throughout the duration of the cyber incident. Based on current information, the incident does not have a significant impact on the uninterrupted provision of essential services in the generation and transmission of electricity in the Republic of Slovenia. We have also not detected any cross-sectoral impact of the incident, a new incident or escalation of the incident. If necessary, following the analysis of the incident, URSIV will propose that the Government of the Republic of Slovenia appropriate additional systemic and other measures to enhance cyber-security in the energy sector.”
We cannot comment on other details due to ongoing investigations. We will, however, keep the public informed of developments and their outcome.
HSE Public Relations and Marketing Communications
Government Information Security Office