ELECQ Discloses Ransomware Attack Exposing Customer Data ELECQ, a Chinese manufacturer of smart electric vehicle (EV) chargers, has notified customers of a ransomware attack that compromised personal data stored in its cloud systems. The company detected "unusual activity" on its AWS platform on March 7, confirming that attackers encrypted and exfiltrated user information before the breach was contained. The stolen data includes names, email addresses, phone numbers, and home addresses standard account details but ELECQ asserts that no financial information, such as payment records or credit card details, was accessed. The attack did not impact the security or functionality of its EV charging devices, which remain operational. Upon discovery, ELECQ initiated its incident response protocol, isolating affected servers and restoring systems from backups. The company has since strengthened its infrastructure by disabling remote access services like SSH and Telnet and enhancing encryption measures. Third-party cybersecurity experts have been engaged to conduct a forensic investigation and address remaining vulnerabilities. ELECQ has reported the breach to regulators, including the UK’s Information Commissioner’s Office (ICO) and Germany’s Federal Commissioner for Data Protection and Freedom of Information, suggesting the incident may involve customers across multiple European markets. Key details remain undisclosed, including the number of affected individuals, the identity of the attackers, and whether a ransom demand was made. The company has not yet responded to requests for further clarification.