Data breach confirmed: Romania’s national oil pipeline operator, Conpet S.A., has confirmed that data was stolen during a cyberattack by the Qilin ransomware gang last week. The company initially reported a breach of its IT infrastructure but now acknowledges data exfiltration.
In a press release following the initial incident, Conpet stated that operations remained unaffected. The company is now working with the Romanian National Cyber Security Directorate (DNSC) to investigate the full extent of the data breach confirmed.
Speaking to BleepingComputer, Conpet confirmed that the Qilin ransomware attack resulted in data being stolen. However, due to the ongoing investigation, they are unable to specify the exact volume of data compromised at this time.
Qilin has claimed responsibility for stealing nearly 1TB of documents and has leaked a sample of 16 images of internal documents to prove the breach. This leaked data includes financial information and passport scans.
“The compromised data may be exploited for fraudulent activities, individuals potentially affected should be wary of urgent requests.”
Some of the stolen documents are marked as confidential and date as recently as November 2025. This data includes personal information such as names, addresses, personal identification numbers, and bank account numbers. This raises significant concerns about potential identity theft and financial fraud stemming from the data breach confirmed.
Impact of the Data Breach Confirmed
Conpet S.A. has issued a warning that the stolen data may be used for fraudulent activities. They are advising individuals who may have been affected to be cautious of any urgent requests received via phone, email, or other communication channels.
Scammers often impersonate employees of legitimate organizations to obtain personal or financial information. It is crucial to verify the authenticity of any such requests by contacting the organization directly using official contact details from their website or verified social media accounts, rather than relying on information provided in unsolicited messages.
Conpet S.A. is a strategically important company controlled by the Romanian Ministry of Energy, responsible for transporting crude oil, gas, and condensate through a 3,800 km pipeline network. A significant data breach confirmed at such a vital infrastructure entity raises serious national security concerns.
Preventing Future Cyberattacks
The incident underscores the growing threat of ransomware attacks against critical infrastructure. Companies must invest in robust cybersecurity measures, including regular security audits, employee training, and incident response planning. related Fraudulents news
The Qilin Ransomware Group
The Qilin ransomware group is a known cybercriminal organization with a history of targeting organizations for financial gain. Their tactics often involve stealing sensitive data and demanding a ransom payment in exchange for its return.
The data breach confirmed is a stark reminder of the increasing sophistication and persistence of cyber threats. Organizations must remain vigilant and proactive in protecting their systems and data from attack.
Source: BleepingComputer




