Romania’s oil pipeline operator, Conpet, confirmed it experienced a cyberattack that disrupted parts of its technology infrastructure and made its website inaccessible. Despite these issues, the company stated that oil transport operations remained unaffected. Conpet operates around 3,800 kilometers of pipelines that supply crude oil and petroleum products across Romania. The company reassured stakeholders that its operational technology systems, including SCADA and telecommunications, continued to function normally. The Qilin ransomware group claimed responsibility for the attack, asserting they stole nearly one terabyte of data from Conpet. They even posted images of internal documents and financial records on their dark web leak site. While Conpet has not confirmed a data breach or identified the attackers, it is working with national cybersecurity authorities to investigate the incident and has filed a criminal complaint. As of Friday, Conpet’s website remained down. Qilin, a Russian-speaking ransomware group that has been active since 2022, has a history of targeting various sectors, including hospitals and government agencies. Their previous attacks have affected organizations in the U.S. and other countries. Romania has seen an uptick in ransomware incidents recently, including attacks on its national water management agency and the Oltenia Energy Complex, its largest coal-based power producer.