Nova Scotia Power has confirmed it was hit by a “sophisticated ransomware attack,” with stolen customer data now published online. In a statement released Friday, the utility said it is continuing to investigate the cyberattack with help from third-party cybersecurity experts.

“Since the incident began several weeks ago, Nova Scotia Power has been actively working with the assistance of third-party cybersecurity experts to restore our systems safely and investigate the incident,” the company said. “We have also been working to further strengthen our systems and add additional security protections.”

The utility said it has not made any payments to the attackers, following guidance from law enforcement. A spokesperson confirmed to CTV News that approximately 280,000 customers may be affected.

The breach originated from an unauthorized intrusion on or around March 19. Unusual activity was detected on April 25, prompting an immediate internal response and contact with law enforcement. The public was notified on April 28.

The compromised data could include names, addresses, phone numbers, birth dates, Social Insurance Numbers, and banking information. Affected customers will receive mailed notices with support information. Nova Scotia Power is also providing a free two-year credit monitoring subscription through TransUnion.

Customers are urged to stay alert for phishing attempts. The company advised against clicking suspicious links or sharing personal information through unofficial channels.

Cybersecurity expert David Shipley added that stronger national action is needed: “We need Ottawa to take this seriously… The threats are too big for provinces to handle alone.”

Nova Scotia Power has filed a request with the provincial energy board for $6.8 million in cybersecurity upgrades — a move that is still awaiting approval.