ELECQ Discloses Ransomware Attack Exposing Customer Data
ELECQ, a Chinese manufacturer of smart electric vehicle (EV) chargers, has notified customers of a ransomware attack that compromised personal data stored in its cloud systems. The company detected "unusual activity" on its AWS platform on March 7, confirming that attackers encrypted and exfiltrated user information before the breach was contained.
The stolen data includes names, email addresses, phone numbers, and home addresses standard account details but ELECQ asserts that no financial information, such as payment records or credit card details, was accessed. The attack did not impact the security or functionality of its EV charging devices, which remain operational.
Upon discovery, ELECQ initiated its incident response protocol, isolating affected servers and restoring systems from backups. The company has since strengthened its infrastructure by disabling remote access services like SSH and Telnet and enhancing encryption measures. Third-party cybersecurity experts have been engaged to conduct a forensic investigation and address remaining vulnerabilities.
ELECQ has reported the breach to regulators, including the UK’s Information Commissioner’s Office (ICO) and Germany’s Federal Commissioner for Data Protection and Freedom of Information, suggesting the incident may involve customers across multiple European markets.
Key details remain undisclosed, including the number of affected individuals, the identity of the attackers, and whether a ransom demand was made. The company has not yet responded to requests for further clarification.
Source: https://www.theregister.com/2026/03/09/ransomware_crooks_hit_ev_charger/
ELECQ cybersecurity rating report: https://www.rankiteo.com/company/elecq
"id": "ELE1773073430",
"linkid": "elecq",
"type": "Ransomware",
"date": "3/2026",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Smart Electric Vehicle (EV) Chargers',
'location': 'China',
'name': 'ELECQ',
'type': 'Manufacturer'}],
'attack_vector': 'Cloud systems (AWS)',
'customer_advisories': 'Customer notification sent',
'data_breach': {'data_encryption': 'Yes (by attackers)',
'data_exfiltration': 'Yes',
'personally_identifiable_information': 'Names, email '
'addresses, phone '
'numbers, home '
'addresses',
'sensitivity_of_data': 'High (PII)',
'type_of_data_compromised': 'Personal data'},
'date_detected': '2024-03-07',
'description': 'ELECQ, a Chinese manufacturer of smart electric vehicle (EV) '
'chargers, has notified customers of a ransomware attack that '
'compromised personal data stored in its cloud systems. The '
'company detected unusual activity on its AWS platform on '
'March 7, confirming that attackers encrypted and exfiltrated '
'user information before the breach was contained.',
'impact': {'data_compromised': 'Names, email addresses, phone numbers, home '
'addresses',
'identity_theft_risk': 'High',
'operational_impact': 'No impact on EV charging device security or '
'functionality',
'payment_information_risk': 'None',
'systems_affected': 'AWS cloud systems'},
'investigation_status': 'Ongoing',
'post_incident_analysis': {'corrective_actions': 'Disabled remote access '
'services, enhanced '
'encryption measures'},
'ransomware': {'data_encryption': 'Yes', 'data_exfiltration': 'Yes'},
'references': [{'source': 'Cyber Incident Report'}],
'regulatory_compliance': {'regulations_violated': ['GDPR'],
'regulatory_notifications': ['UK’s Information '
'Commissioner’s Office '
'(ICO)',
'Germany’s Federal '
'Commissioner for Data '
'Protection and '
'Freedom of '
'Information']},
'response': {'communication_strategy': 'Customer notification, regulatory '
'reporting',
'containment_measures': 'Isolated affected servers, restored '
'systems from backups',
'incident_response_plan_activated': 'Yes',
'recovery_measures': 'Systems restored from backups',
'remediation_measures': 'Disabled remote access services (SSH, '
'Telnet), enhanced encryption measures',
'third_party_assistance': 'Cybersecurity experts engaged for '
'forensic investigation'},
'title': 'ELECQ Discloses Ransomware Attack Exposing Customer Data',
'type': 'Ransomware'}