Conpet Confirms Data Breach in Cyberattack on Romanian Pipeline
▼ Summary
– Conpet S.A., Romania’s national oil pipeline operator, confirmed a data breach by the Qilin ransomware gang, though its operations were unaffected.
– The company is investigating the incident in collaboration with the Romanian National Cyber Security Directorate (DNSC).
– Qilin claims to have stolen nearly 1TB of documents, leaking a sample that included confidential financial data and personal information like passport scans.
– Conpet has warned that the stolen data could be used for fraud and advises individuals to be cautious of unsolicited requests for personal information.
– The company recommends verifying any suspicious communication by using official contact details from its website or verified social media accounts.
Romania’s state-owned pipeline operator, Conpet S.A., has officially confirmed a significant data breach following a cyberattack by the Qilin ransomware gang. The company’s corporate IT systems were compromised, though the attack did not disrupt the physical transportation of crude oil, gas, and condensate across its 3,800-kilometer network. Conpet is now working closely with the Romanian National Cyber Security Directorate (DNSC) to investigate the full scope of the incident.
In a statement, the company acknowledged that the cyberattack led to data exfiltration, but due to the ongoing investigation, it cannot yet quantify the exact volume of information stolen. However, the Qilin group itself has claimed responsibility, asserting it stole nearly one terabyte of documents. To substantiate their claim, the hackers leaked a sample of 16 files containing internal documents. These files include financial records, passport scans, and materials marked as confidential, with some documents dated as recently as November 2025.
The leaked data sample contains highly sensitive personal information, including individual names, home addresses, personal identification numbers, and bank account details. In its latest communication, Conpet has warned that this stolen data could be used for fraudulent purposes. The company is urging anyone who may be affected to exercise extreme caution regarding unsolicited communications.
Individuals should be particularly wary of urgent requests for personal or financial information received via phone, email, or other messaging platforms. Scammers often pose as representatives of legitimate organizations to trick people into divulging sensitive data. To avoid falling victim to such schemes, it is crucial to independently verify any suspicious contact. This should be done by using official contact information obtained directly from the organization’s verified website or social media channels, not from details provided in the potentially fraudulent message itself.
As a strategic entity under the control of the Romanian Ministry of Energy, this breach highlights the escalating cyber threats facing critical national infrastructure. The company continues to assess the damage with the support of national cybersecurity authorities.
(Source: Bleeping Computer)
