After cyber attack: solar provider "Qcells" informs customers about data leak

The German site of the company Hanwa Qcells, which offers solar systems and electricity, among other things, has suffered a cyberattack. According to a customer letter obtained by heise online, the attack on the company's IT systems occurred on July 14, 2024. Hanwa QCells has not yet responded to an inquiry from heise online about the incident. We will provide a statement as soon as it is available.

In the attack, as yet unknown third parties apparently succeeded in gaining access to parts of the customer and business partner database, according to the letter. Accordingly, personal data of customers and business partners has been leaked. The company is currently working on restoring the systems.

At the beginning of August, cyber criminals had already published an entry on their leak site and threatened to publish Hanwa Qcells' data on August 9. It is not yet known how many customers are affected by the data leak.

The group "Abyss" is behind the attack. The leaked data may include master data such as names, addresses, telephone numbers, email addresses, passwords and account details. The State Office of Criminal Investigation and the State Commissioner for Data Protection of Saxony-Anhalt have already been involved.

Phishing attacks

As a result of the attack, those affected should be particularly vigilant and change their passwords both in the online store and in the "Q Partner Portal" as well as on other platforms where the password was used. In addition to phishing attempts, there could also be an increase in credential stuffing attacks, in which attackers test login data obtained elsewhere – for example through leaks – in order to log into other accounts.

(mack)