Blackouts In Spain & Portugal Likely Caused By A Cyber Attack

Uploaded on 2025-04-29 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Production-Utilities, BUSINESS-Production-Energy

A massive power outage struck the Iberian Peninsula on April 28, plunging millions of people into darkness as electricity supplies were suddenly cut across Spain and Portugal. According to Juanma Moreno, President of the Andalusian regional government, hostile activity by cyber criminals is  the most likely cause of the blackout. 

Portugal’s grid operator, RNA, offered an alternative explanation for the massive power outage when it It blamed a rare atmospheric phenomenon which caused "oscillations" and "vibrations" in high power lines, which in turn resulted in "synchronisation failures" across the national grid. 

It is unclear how such oscillations might have affected power supply across Spain.

Around midday on Monday electrical systems of all kinds started to break down across both nations, affecting electrical power, telecoms and internet connectivity affecting emergency services across both countries - only the offshore  islands were  unaffected. 

El Pais, the Spanish newspaper said, “the power outages have paralysed the normal operation of infrastructure, communications, roads, with widespread traffic light failures, train stations, airports, businesses, and buildings,” including incidents involving elevators. 

The Portuguese newspaper, Correio da Manha, said that police have been sent out into the streets to help with traffic control in the absence of the usual infrastructure to keep vehicles moving. Vodafone  blamed disruptions to its network across Portugal on the continuing electricity problems. Even he French Basque region neighbouring Spain is reported to have suffered “brief power cuts".

If this is the result of a cyber attack it will be the most significant attack of its kind since the 2015 and 2016 when widespread national blackouts were inflicted on Ukraine by Russian hackers, several years prior to the subsequent  failed invasion.  

While the exploit  affected hundreds of homes in western Ukraine, this incident is affecting millions of people across the Iberian Peninsula and an attack of such wide ranging impact affecting  major EU nations would be a challenging and complex operation, beyond the capabilities of all but the most skilled and well-resource nation-state  threat groups. 

The International Energy Agency recently warned that cyber attacks against utilities worldwide have more than doubled between 2020 and 2022 and while there have been some cases of undersea cables and even gas pipelines being severed in the past, these caused localised disruption, rather than affecting an entire nation. 

Most previous attacks on energy infrastructure, including those in Ukraine, Estonia  and the highly effective Stuxnet attack on nuclear facilities in Iran, have been blamed on nation state actors, although no nation has ever claimed responsibility.

@JuanMa_Moreno  |   El Pais |   CM Jornal  |   ITPro   |   Sky News   |   Figaro   |   Yahoo   |   BBC   | 

ITVX   |   Cybersecurity News   |   Ars Technica   |  IEA    

Image: 

You Might Also Read: 

Cybersecurity, Volt Typhoon & The Grid:

If you like this website and use the comprehensive 8,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible



 

« Cybersecurity Risks In Legacy Scheduling Systems & How To Mitigate Them
Ransomware Attacks On The Energy Sector Surging »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Brookings Institution

Brookings Institution

The Brookings Institution is a nonprofit public policy organization. Cyber security is covered within the various study areas.

Alert Logic

Alert Logic

Alert Logic delivers unrivaled security for any environment, delivering industry-leading managed detection and response (MDR) and web application firewall (WAF) solutions.

XCure Solutions

XCure Solutions

XCure Solutions are a Finnish company specializing in data security, data protection and data recovery.

Signifyd

Signifyd

Signifyd is the world's largest provider of Guaranteed e-Commerce Fraud Protection.

Quantum Generation

Quantum Generation

Quantum Cyber Security for a new age of communications. We are developing the largest decentralized orbital, and ground quantum mesh network based on blockchain technology.

ISA Security Compliance Institute (ISCI)

ISA Security Compliance Institute (ISCI)

ISCI, a not-for-profit automation controls industry consortium, manages the ISASecure™ conformance certification program for industrial automation and control systems.

White Cloud Security

White Cloud Security

White Cloud is a cloud-based Application Trust-Listing security service that prevents unauthorized programs from running on your computers.

Meditology

Meditology

Meditology Services is a top-ranked provider of information risk management, cybersecurity, privacy, and regulatory compliance consulting services exclusively for healthcare organizations.

Cyber Coaching

Cyber Coaching

Cyber Coaching is a community for enhancing technical cyber skills, through unofficial certification training, cyber mentorship, and personalised occupational transition programs.

NAK Consulting Services

NAK Consulting Services

NAK is helping organisations to create Secure, Agile IT Environments. Our goal is to be the trusted advisor and managed service partner for our clients.

Resilience Cyber insurance

Resilience Cyber insurance

Resilience helps to improve cyber resilience by connecting cyber insurance coverage with advanced cybersecurity visibility and a shared plan to reinforce great cyber hygiene.

Xobee Networks

Xobee Networks

Xobee Networks is a Managed Service Provider of innovative, cost-effective, and cutting-edge technology solutions in California.

TOTM Technologies

TOTM Technologies

TOTM Technologies provides end-to-end identity management and biometrics products, powering Digital identity and Digital onboarding solutions.

Iolo

Iolo

Iolo develops patented technology and award-winning software that repairs, optimizes, and protects computers, to maximize system speed and performance while keeping them safe.

Defence Labs

Defence Labs

Defence Labs is a cybersecurity company specialising in cost effective penetration testing for small-to-medium sized enterprises.

Complete Cyber

Complete Cyber

Complete Cyber provide professional cybersecurity services and products to help secure your infrastructure, systems and data.