Blackouts In Spain & Portugal Likely Caused By A Cyber Attack

Uploaded on 2025-04-29 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Production-Utilities, BUSINESS-Production-Energy

A massive power outage struck the Iberian Peninsula on April 28, plunging millions of people into darkness as electricity supplies were suddenly cut across Spain and Portugal. According to Juanma Moreno, President of the Andalusian regional government, hostile activity by cyber criminals is  the most likely cause of the blackout. 

Portugal’s grid operator, RNA, offered an alternative explanation for the massive power outage when it It blamed a rare atmospheric phenomenon which caused "oscillations" and "vibrations" in high power lines, which in turn resulted in "synchronisation failures" across the national grid. 

It is unclear how such oscillations might have affected power supply across Spain.

Around midday on Monday electrical systems of all kinds started to break down across both nations, affecting electrical power, telecoms and internet connectivity affecting emergency services across both countries - only the offshore  islands were  unaffected. 

El Pais, the Spanish newspaper said, “the power outages have paralysed the normal operation of infrastructure, communications, roads, with widespread traffic light failures, train stations, airports, businesses, and buildings,” including incidents involving elevators. 

The Portuguese newspaper, Correio da Manha, said that police have been sent out into the streets to help with traffic control in the absence of the usual infrastructure to keep vehicles moving. Vodafone  blamed disruptions to its network across Portugal on the continuing electricity problems. Even the French Basque region neighbouring Spain is reported to have suffered “brief power cuts".

If this is the result of a cyber attack it will be the most significant attack of its kind since 2015 and 2016 when widespread national blackouts were inflicted on Ukraine by Russian hackers, several years prior to the subsequent  failed invasion.  

While the exploit  affected hundreds of homes in western Ukraine, this incident is affecting millions of people across the Iberian Peninsula and an attack of such wide ranging impact affecting  major EU nations would be a challenging and complex operation, beyond the capabilities of all but the most skilled and well-resource nation-state  threat groups. 

The International Energy Agency recently warned that cyber attacks against utilities worldwide have more than doubled between 2020 and 2022 and while there have been some cases of undersea cables and even gas pipelines being severed in the past, these caused localised disruption, rather than affecting an entire nation. 

Most previous attacks on energy infrastructure, including those in Ukraine, Estonia  and the highly effective Stuxnet attack on nuclear facilities in Iran, have been blamed on nation state actors, although no nation has ever claimed responsibility.

@JuanMa_Moreno  |   El Pais |   CM Jornal  |   ITPro   |   Sky News   |   Figaro   |   Yahoo   |   BBC   | 

ITVX   |   Cybersecurity News   |   Ars Technica   |  IEA    

Image: 

You Might Also Read: 

Cybersecurity, Volt Typhoon & The Grid:

If you like this website and use the comprehensive 8,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible



 

« Cybersecurity Risks In Legacy Scheduling Systems & How To Mitigate Them
Ransomware Attacks On The Energy Sector Surging »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

CERT-In

CERT-In

CERT-In is a functional organisation of the Ministry of Information & Electronics Technology, Government of India, with the objective of securing Indian cyber space.

Cisco Talos

Cisco Talos

Talos is an industry-leading threat intelligence solution that protects your organization’s people, data and infrastructure from active adversaries.

BetterCloud

BetterCloud

BetterCloud puts IT in control of the modern workplace through user lifecycle management, data discovery, and IT and security automation purpose-built for SaaS.

Komodo Consulting (KomodoSec)

Komodo Consulting (KomodoSec)

Komodo Consulting specializes in Penetration Testing and Red-Team Excercises, Cyber Threat Intelligence, Incident Response and Application Security.

Onspring

Onspring

Onspring is the cloud-based platform of choice for governance, risk and compliance (GRC) teams and business operations experts across multiple industries.

Six Degrees

Six Degrees

Six Degrees is a leading secure, integrated cloud services provider. We protect UK organisations and help them thrive in the cloud by giving them secure platforms to innovate and grow.

Excelerate Systems

Excelerate Systems

Excelerate Systems is a leading provider of IT services with a focus on Big Data, Cloud Services and Security.

EU Joint Research Centre

EU Joint Research Centre

JRC is the European Commission's science and knowledge service which employs scientists to carry out research in order to provide independent scientific advice and support to EU policy.

Celerium

Celerium

Celerium transforms cyber defense for both companies and industry sectors by leveraging cyber threat intelligence to defend against cyber threats and attacks.

Perch Security

Perch Security

Perch is a co-managed threat detection and response platform backed by an in-house Security Operations Center (SOC).

Easy Dynamics

Easy Dynamics

Easy Dynamics is a leading technology services provider with a core focus in Cybersecurity, Cloud Computing, and Information Sharing.

Codean

Codean

The Codean Review Environment automates mundane software analysis tasks, so security experts can focus on finding vulnerabilities.

Sealing Technologies (SealingTech)

Sealing Technologies (SealingTech)

SealingTech is a leader in cutting edge research, products, engineering, and integration services in the Internet of Things, Edge, Machine Learning, Artificial Intelligence, and Cloud.

Mode Solutions

Mode Solutions

Mode guarantee IT performance where you need it most, creating seamless and secure solutions that will alleviate pressure from your business.

Domotz

Domotz

Domotz enables IT teams to monitor and manage their networks remotely, while ensuring that the security and the operational efficiency of their organizations are properly maintained.

CeTu

CeTu

CeTu - Data Orchestration for the Modern SOC. Strengthen security and optimize costs with the world's first AI-native platform for scaling and future-proofing your data stack.