Itron confirms cyber incident — internal systems accessed April 13. Quickly contained. No operational impact. No customer data breach.

Itron Hack: Energy and Water Management Firm Discovers Unauthorized Access to Its Systems

Liberty Lake, Washington — April 2026 — Itron, Inc., a major U.S.-based provider of energy and water management solutions, has disclosed a cybersecurity incident in which an unauthorized third party gained access to certain internal company systems.

The company detected the unauthorized access on April 13, 2026, and promptly activated its cybersecurity incident response plan. Itron engaged external advisors to investigate, contain, remediate, and remove the unauthorized activity. It also notified law enforcement authorities.

In an 8-K filing with the U.S. Securities and Exchange Commission (SEC) disclosed late on April 25 or 26, 2026, Itron stated that it “took action to remediate and remove the unauthorized activity” and has not observed any subsequent unauthorized activity within its corporate systems.

Key Details from Itron’s Disclosure:

• No operational disruption: The company emphasized that its operations have continued “in all material respects” with no significant impact reported.

• Customer systems unaffected: No unauthorized activity was observed in the “customer-hosted portion” of its systems.

• Customer data: Itron has stated it did not detect unauthorized access to customer data. However, the full scope of the incident, including whether any data was viewed, exfiltrated, or compromised, remains under investigation. The company is still assessing any potential notification obligations.

• No ransomware claim: As of the latest reports, no ransomware group or extortion demand has been publicly linked to the incident.

About Itron

Itron is a global leader in smart metering, data analytics, and industrial IoT solutions for electricity, gas, and water utilities. The company serves thousands of utilities and cities in over 100 countries, managing critical infrastructure that supports energy and water resource management for millions of endpoints. It reported approximately $2.37 billion in annual revenue in 2025 and employs nearly 5,000 people.

Context and ImplicationsThis incident highlights ongoing cybersecurity risks facing suppliers of critical infrastructure technologies. While Itron’s smart meters and grid solutions are widely deployed, the breach appears limited to the company’s internal corporate IT environment rather than operational technology (OT) or customer-facing systems.

Experts note that attacks on vendors like Itron can serve as a potential entry point for broader supply-chain threats, though the company has stressed that customer operations and hosted systems were not impacted.The investigation is ongoing. Itron has not yet provided further details on the attackers, initial access method, or any specific data that may have been involved.

Sources:

Itron’s SEC 8-K filing, reports from SecurityWeek, TechCrunch, BleepingComputer, Cybersecurity Dive, and Security Affairs (April 26–28, 2026).