PPL Electric Utilities customer data was exposed during a data breach almost two years ago, according to the company.
The company said in a statement Thursday that it was notified in June 2023 of a widespread breach of the MOVEit file transfer software used by PPL and many other organizations. Despite the vulnerability being discovered then, non-financial customer data that appears to have been a part of that breach was only discovered recently, according to PPL.
Data exposed did not include banking or credit card information, social security numbers or account passwords because none of that data is shared with the vendor, the statement said. It did not extend beyond basic information such as name, address, phone number, email address and utility account number, according to PPL.
The company said the issue is completely unrelated to its systems and critical infrastructure in its service areas.