Cyberattacks: Fortum Faces Increasing Threats to Its Infrastructures in Finland and Sweden

Fortum, a major player in the Finnish energy sector, is confronting a surge of cyberattacks and suspicious surveillance activities around its facilities in Finland and Sweden, likely orchestrated by Russian actors, heightening geopolitical tensions in the region.

Share:

Gain full professional access to energynews.pro from 4.90€/month.
Designed for decision-makers, with no long-term commitment.

Over 30,000 articles published since 2021.
150 new market analyses every week to decode global energy trends.

Monthly Digital PRO PASS

Immediate Access
4.90€/month*

No commitment – cancel anytime, activation in 2 minutes.

*Special launch offer: 1st month at the indicated price, then 14.90 €/month, no long-term commitment.

Annual Digital PRO Pass

Full Annual Access
99€/year*

To access all of energynews.pro without any limits

*Introductory annual price for year one, automatically renewed at 149.00 €/year from the second year.

Fortum, one of the leading companies in the Finnish energy sector, is experiencing daily cyberattacks and surveillance activities on its critical infrastructures in Finland and Sweden. These incidents include attempts to disrupt satellite connections, unidentified drone flyovers, and physical surveillance of energy production sites. This intensification of malicious activities appears to be linked to the deteriorating relations with Russia, following Finland and Sweden’s decision to join NATO after the 2022 invasion of Ukraine.

According to Fortum’s data, its energy production facilities, including hydroelectric, wind, solar, and nuclear power plants, have seen a significant increase in the number of cyberattacks since the beginning of 2024. GlobalData reported that the first quarter of 2024 recorded the highest number of attacks targeting critical infrastructures in the past four years. This trend seems to be exacerbated by the increased integration of renewable energy sources, which has expanded the attack surface for hackers.

The growing complexity of these cyberattacks is accompanied by new vulnerabilities, particularly within the older management and control systems of the facilities. As a result, Fortum has decided to strengthen its security protocols by adopting advanced technologies and implementing regular system updates. These measures aim to address both existing vulnerabilities and emerging threats, ensuring the resilience of their energy infrastructure against sophisticated cyber threats.

Fortum’s Response to Cyber Threats

To mitigate these risks, Fortum has implemented enhanced security measures, such as stricter access controls, deployment of private security personnel, and conducting emergency simulation drills in collaboration with local authorities. These initiatives are designed to minimize operational disruptions and safeguard critical energy assets. Additionally, Fortum has invested in advanced cybersecurity technologies, including intrusion detection systems and real-time monitoring solutions, to proactively identify and neutralize potential threats.

Cooperation with national security agencies remains limited, as attributing these attacks to state actors, particularly Russians, remains a sensitive issue. Nevertheless, Fortum’s officials acknowledge that Russian involvement is strongly suspected based on intelligence assessments and the nature of the attacks. This collaboration, albeit constrained, is crucial for sharing threat intelligence and coordinating responses to mitigate the impact of cyber incidents.

Geopolitical Context

Finland and Sweden’s accession to NATO has been perceived by Russia as a direct threat to its national security. In response, Moscow has intensified its intelligence and cyber-espionage operations against its Nordic neighbors. This situation has become particularly tense since Russia seized Fortum’s energy assets in its territory, valued at approximately $1.9 billion, in retaliation to European sanctions imposed following the Ukraine conflict.

Finnish and Swedish intelligence agencies have warned that Russia may seek to test the resilience of their energy infrastructures while collecting strategic information. Unidentified drone flyovers and attempts to disrupt Fortum’s satellite communications illustrate these efforts to create uncertainty and exert pressure on energy sector players. These actions are part of a broader strategy to destabilize the region’s energy security and gain leverage in geopolitical negotiations.

Moreover, the increased cyber activities coincide with Russia’s broader strategy to undermine Western alliances and assert its influence in Europe. By targeting critical infrastructure, Russia aims to weaken the economic stability and security of NATO member states, thereby diminishing their capacity to coordinate effectively within the alliance.

Perspectives for Fortum and the Energy Sector

Despite the increase in threats, Fortum states that the impact on its operations remains limited, highlighting the effectiveness of its protective measures. The company’s ability to maintain operational continuity amidst persistent attacks underscores the importance of robust cybersecurity frameworks in the energy sector. However, the persistence of these attacks indicates a long-term strategy aimed at assessing system robustness, gathering sensitive intelligence, or potentially disrupting energy supply chains in the region.

Looking ahead, Fortum and other companies in the sector will need to further strengthen their investments in cybersecurity and collaborate more closely with intelligence agencies to protect their critical infrastructures. The security of energy assets, in an unstable geopolitical context, could become a priority issue for the European Union as tensions with Russia continue to escalate. Enhanced international cooperation and information sharing will be essential in developing comprehensive defense strategies to counteract the evolving threat landscape.

Additionally, the energy sector must anticipate and prepare for the integration of emerging technologies that could both enhance operational efficiencies and introduce new vulnerabilities. As renewable energy sources become more prevalent, the sector must balance the benefits of modernization with the imperative of maintaining stringent security standards to protect against increasingly sophisticated cyber threats.

US-based Madison secures $800mn debt facility to finance energy infrastructure projects and address rising grid demand across the country.
The announced merger between Anglo American and Teck forms Anglo Teck, a new copper-focused leader structured for growth, with a no-premium share structure and a $4.5bn special dividend.
Voltalia launches a transformation programme targeting a return to profit from 2026, built on a refocus of activities, a new operating structure and self-financed growth of 300 to 400 MW per year.
Ineos Energy ends all projects in the UK, citing unstable taxation and soaring energy costs, and redirects its investments to the US, where the company has just allocated £3bn to new assets.
Eskom forecasts a load-shedding-free summer after covering 97% of winter demand, supported by 4000 MW added capacity and reduced operating expenses.
GE Vernova will cut 600 jobs in Europe, with the Belfort gas turbine site in France particularly affected, amid financial growth and strategic reorganisation.
SOLV Energy expands its nationwide services in the United States with the acquisitions of Spartan Infrastructure and SDI Services, consolidating its presence across all independent power markets.
Tokenised asset platform Plural secures $7.13mn to accelerate financing of distributed infrastructure including solar, storage, and data centres.
Santander Alternative Investments has invested in Corinex to accelerate the deployment of its smart grid solutions, aiming to address growing utility needs in Europe and the Americas.
Driven by grid modernisation and industrial automation, the global control transformer market could reach $1.48bn in 2030, with projections indicating steady growth in energy-intensive sectors.
A report from energy group Edison highlights structural barriers slowing renewable deployment in Italy, threatening its ability to meet 2030 decarbonisation targets.
ADNOC Group CEO Dr Sultan Al Jaber has been named 2025 CEO of the Year by his global chemical industry peers, recognising his role in the company’s industrial expansion and international investments.
Swedish renewable energy developer OX2 has appointed Matthias Taft as its new chief executive officer, succeeding Paul Stormoen, who led the company since 2011 and will now join the board of directors.
Driven by distributed solar and offshore wind, renewable energy investments rose 10% year-on-year despite falling financing for large-scale projects.
Australian Oilseeds Holdings was granted a deadline extension until 30 September to comply with the Nasdaq’s equity requirements, avoiding immediate delisting from the exchange.
Fermi America has closed $350mn in financing led by Macquarie to accelerate the development of its HyperGridâ„¢ energy campus, focused on artificial intelligence and high-performance data applications.
Soluna Holdings launched two energy projects in Texas, reaching one gigawatt of cumulative capacity for its data centres, marking a new stage in the development of computing infrastructure powered by renewable energy.
Eneco’s Supervisory Board has appointed Martijn Hagens as the next Chief Executive Officer. He will succeed interim CEO Kees Jan Rameau, effective from 1 March 2026.
With $28 billion in planned investments, hyperscaler expansion in Japan reshapes grid planning amid rising tensions between digital growth and infrastructure capacity.
The suspension of the Revolution Wind farm triggers a sharp decline in Ørsted’s stock, now trading at around 26 USD, increasing the financial stakes for the group amid a capital increase.

Log in to read this article

You'll also have access to a selection of our best content.