- Itron reports cyberattack which briefly affected parts of its IT network but caused no material disruption
- The company activated its response plan, blocked the intrusion, and said sensitive data and customers were not impacted
- With the investigation ongoing, Itron expects any costs to be covered by insurance, and no hacking groups have claimed responsibility
American utility technology giant Itron has confirmed it recently suffered a cyberattack which saw threat actors access parts of its IT network - although it seems sensitive data is safe.
In an 8-K form filed with the US Securities and Exchange Commission (SEC), the company said it spotted the intrusion on April 13 2026.
“The company activated its cybersecurity response plan and launched an investigation with the support of external advisors to assess, mitigate, remediate, and contain the unauthorized activity,” it said in the filing.
No attribution
Itron did not say who the threat actors were, or how they were able to break into its network. It merely stated that the attack was blocked, and that there was no follow-up activity on the threat actors’ side.
The US-based firm provides smart meters, sensors, and data platforms to utilities and cities, which are then used to manage electricity, gas, water, and other systems. Itron serves more than 8,000 utilities across 100+ countries, reaching hundreds of millions of people and generating roughly $2.4 billion in annual revenue.
BleepingComputer notes it employs roughly 5,600 people, and is listed on the NASDAQ exchange.
Critical infrastructure organizations are one of the more popular targets for ransomware operators, who aim to either lock the systems down, or steal sensitive files.
That gives them leverage, as they demand a ransom to be paid. In this attack, however, Itron said that there was no material disruption, and that whatever costs arise from the incident will be covered through insurance.
Itron added its customers were not affected by the attack, but stressed the investigation is still ongoing. At press time, no hacking groups claimed responsibility for the attack and given that the impact was likely minimal, no groups probably will.
