IWB cyberattack: 40,000 customers involved in Basel (cross-border guide)

Data breach at an external supplier of the Basel electricity company. What happened and what information was stolen.

Context

In a nutshell

  • Cyber-attack against an IWB external service provider.
  • Approximately 40,000 customers involved in the data breach.
  • No impact on the internal systems of the energy company.
  • Risk of abuse considered low by the authorities.

Key facts

  • What: Computer attack with theft of personal data.
  • When: Officially communicated today.
  • Where: Canton of Basel-City.
  • Who: Industrie Werke Basel (IWB).
  • Number of customers: Approximately 40,000 people interested.
  • Subtracted data: Names, addresses and technical information on the meters.

Industrie Werke Basel (IWB), the public body responsible for the supply of electricity and drinking water for the Canton of Basel-City, has been the victim of a major cyber incident. The event did not directly affect the infrastructure servers, but involved an external service provider that manages part of the user's data. According to the company, the breach involved the personal and technical data of about 40,000 customers. Despite the severity of the situation, the company promptly isolated the exchange of data with the third party, preventing further spread of the threat.

The dynamics of the accident

The third-party provider immediately notified IWB of the incident, allowing the company to promptly initiate internal security procedures and limit access to data flows. Internal management and operating systems

Operational details

Digital security in the context of Swiss utilities is a topic of increasing relevance, especially when analysing the practical implications for citizens. In the specific case of IWB, the company has clarified that the information stolen is limited to names, addresses and technical details regarding energy meters. It is essential to underline, for the peace of mind of users, which data has NOT been stolen: telephone numbers, email addresses and bank details have remained safe. Furthermore, the stolen information does not allow in any way to trace the actual energy consumption, nor does it allow the display of billing or payment data.

# User Risk Analysis

The risk of misuse of the stolen information is currently classified as low, as it lacks the critical elements that are usually used for financial fraud or improper access. However, caution remains the recommended rule. In an age where phishing attempts and digital scams are increasingly sophisticated, the fact that names and addresses have been exposed could expose some users to unwanted contacts. It is therefore advisable to carefully monitor any unexpected communications. For those who want a broader overview of their financial and consumer situation, it is always useful to consult home management tools through the dedicated calcolatore, which allows you to

Recommended tools

For an updated estimate, use the net salary calculator and the CHF-EUR exchange comparator.

Key points

For IWB clients, the priority is to maintain a posture of maximum caution. Despite the reassurance provided by the company regarding the absence of fraud evidence, it is advisable to adopt a series of standard precautions to protect one's digital identity. If you receive calls, messages, or emails requesting immediate payments or the disclosure of passwords in the name of IWB, do not proceed with the interaction. Always verify the authenticity of such requests through the official channels of the company and do not click on links contained in messages not explicitly requested. The personalized communication that IWB will send to interested clients will contain specific instructions, if necessary, to manage one's position.

Evaluating a Ticino job offer? Simulate your net payslip: enter gross salary, marital status and municipality for a detailed breakdown.

Source: swissinfo.ch

Frequently Asked Questions
What data was stolen in the IWB attack?
The attack involved the subtraction of names, addresses and technical data regarding the energy meters. No phone numbers, email addresses or bank details were stolen. The company has confirmed that it is not possible to trace energy consumption or view billing or payment data.
Is the risk of fraud high for customers?
No, the risk of abuse is currently considered low. Despite this, IWB recommends extreme caution in the face of unexpected contacts, especially if they require money or login credentials. There is currently no evidence of fraudulent use of the stolen data.
What should interested customers do?
Interested customers will receive personalized communication from IWB. In general, it is advisable not to respond to suspicious contacts that require money or passwords and always verify the origin of any communication through the company's official channels.

Related articles