Nova Scotia Power’s data breach under intense scrutiny — could class-action lawsuit be filed?

Nova Scotia’s private utility has been under intense scrutiny ever since data it collected from nearly 300,000 ratepayers was stolen by hackers in April. Nova Scotia Power says all information — banking information, driver’s license details and even social insurance numbers — has since been published on the dark web. “The evidence now suggests this was a Russian-based actor,” said Peter Gregg, the private utility’s president and CEO. Global’s Heidi Petracek reports.

Source: https://globalnews.ca/video/11550581/nova-scotia-powers-data-breach-under-intense-scrutiny-could-class-action-lawsuit-be-filed/

Nova Scotia Power cybersecurity rating report: https://www.rankiteo.com/company/nova-scotia-power

"id": "NOV1764460498",
"linkid": "nova-scotia-power",
"type": "Cyber Attack",
"date": "4/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"

{'affected_entities': [{'customers_affected': '300,000 ratepayers',
                                     'industry': 'Energy/Utilities',
                                     'location': 'Nova Scotia, Canada',
                                     'name': 'Nova Scotia Power',
                                     'size': None,
                                     'type': 'Private Utility'}],
              'data_breach': {'data_encryption': None,
                              'data_exfiltration': True,
                              'file_types_exposed': None,
                              'number_of_records_exposed': '300,000',
                              'personally_identifiable_information': True,
                              'sensitivity_of_data': 'High (PII, financial '
                                                     'data)',
                              'type_of_data_compromised': ['banking '
                                                           'information',
                                                           'driver’s license '
                                                           'details',
                                                           'social insurance '
                                                           'numbers']},
              'date_detected': '2024-04',
              'description': 'Nova Scotia’s private utility, Nova Scotia '
                             'Power, experienced a data breach in April where '
                             'hackers stole data from nearly 300,000 '
                             'ratepayers. The compromised '
                             'information—including banking details, driver’s '
                             'license information, and social insurance '
                             'numbers—was later published on the dark web. '
                             'Evidence suggests the attack was carried out by '
                             'a Russian-based actor.',
              'impact': {'brand_reputation_impact': 'Intense scrutiny',
                         'conversion_rate_impact': None,
                         'customer_complaints': None,
                         'data_compromised': ['banking information',
                                              'driver’s license details',
                                              'social insurance numbers'],
                         'downtime': None,
                         'financial_loss': None,
                         'identity_theft_risk': 'High (SIN, driver’s license, '
                                                'banking info exposed)',
                         'legal_liabilities': None,
                         'operational_impact': None,
                         'payment_information_risk': 'High (banking '
                                                     'information exposed)',
                         'revenue_loss': None,
                         'systems_affected': None},
              'initial_access_broker': {'backdoors_established': None,
                                        'data_sold_on_dark_web': True,
                                        'entry_point': None,
                                        'high_value_targets': None,
                                        'reconnaissance_period': None},
              'investigation_status': 'Ongoing (evidence suggests '
                                      'Russian-based actor)',
              'post_incident_analysis': {'corrective_actions': None,
                                         'root_causes': None},
              'ransomware': {'data_encryption': None,
                             'data_exfiltration': True,
                             'ransom_demanded': None,
                             'ransom_paid': None,
                             'ransomware_strain': None},
              'references': [{'date_accessed': None,
                              'source': 'Global News',
                              'url': None}],
              'regulatory_compliance': {'fines_imposed': None,
                                        'legal_actions': None,
                                        'regulations_violated': None,
                                        'regulatory_notifications': None},
              'response': {'adaptive_behavioral_waf': None,
                           'communication_strategy': 'Public disclosure by CEO '
                                                     '(Peter Gregg)',
                           'containment_measures': None,
                           'enhanced_monitoring': None,
                           'incident_response_plan_activated': None,
                           'law_enforcement_notified': None,
                           'network_segmentation': None,
                           'on_demand_scrubbing_services': None,
                           'recovery_measures': None,
                           'remediation_measures': None,
                           'third_party_assistance': None},
              'threat_actor': 'Russian-based actor',
              'title': 'Nova Scotia Power Data Breach',
              'type': 'Data Breach'}