Thought Leadership
Itron supplies utilities and municipalities worldwide with technology for power, gas and water grids. In mid-April, the company detected unauthorized access to its internal systems.
US-based energy and water management solutions provider Itron has fallen victim to a security incident. As the company disclosed in a mandatory filing with the US Securities and Exchange Commission (SEC), an unauthorized third party gained access to parts of its internal IT infrastructure. According to the filing, the incident was detected on 13 April 2026.
Itron is one of the world’s largest providers of smart meters, sensor technology and software for utility companies and cities, with more than 8,000 customers across roughly 100 countries, according to its own figures. Its portfolio ranges from intelligent electricity, gas and water meters to grid management platforms. This makes the Washington-based company part of critical infrastructure.
Attacker reportedly removed from systems
After the incident came to light, the company says it activated its cybersecurity response plan, called in external forensic experts and notified law enforcement authorities. The attacker has since been removed from the systems, and no further unauthorized activity has been observed. According to Itron, the customer-hosted portion of its systems was not affected. Only internal company systems were compromised.
Business operations are continuing “in all material respects,” the company stated. Contingency plans and backup systems made this possible.
Many open questions
Who is behind the attack and what motives the perpetrators pursued remains unclear for now. Itron also made no statement in its SEC filing on whether sensitive customer or employee data may have been exfiltrated. No known ransomware or extortion group has so far claimed responsibility for the attack. According to industry media reports, the company did not respond to questions about how the attackers gained initial access or whether a ransom was demanded.
Itron does not currently expect the incident to have a material financial impact. A significant portion of the direct costs of the incident response is expected to be reimbursed by insurers. The company is also currently reviewing which regulatory filings and legal steps may be required.
