Ransomware group attacks electrical grid wiring agency of Montreal (CSEM)

The LockBit ransomware recently claimed responsibility for infiltrating the Commission des services électriques de Montréal (CSEM), a public agency tasked with managing the underground electrical installation in Montreal, Quebec, Canada.

CSEM's primary mission is to ensure the safety, reliability, and sustainability of the underground electrical network in Montreal. Their core activities involve planning and coordinating the undergrounding of electrical wires, overseeing and maintaining the underground electrical infrastructure, as well as offering information and education regarding underground electrical networks.

CSEM acknowledged the security breach, confirming that it occurred on August 3, 2023. They chose not to yield to the ransom demands and initiated an immediate investigation into the breach with the assistance of law enforcement in Quebec, successfully recovering affected systems.

The LockBit ransomware group proceeded to publish the stolen data on August 30, 2023. CSEM made efforts to downplay the severity of the breach by highlighting that all CSEM projects are already publicly documented, including engineering, construction, and management plans, accessible through official channels in Quebec.