Itron confirms intruder breached internal IT network at US utility tech giant

Itron, the Washington-based utility technology vendor whose hardware and software underpin electricity, water, and gas networks for 7,700 customers across 100 countries, disclosed in an 8-K filing that an unauthorized third party accessed parts of its internal systems on April 13, 2026. The company activated its incident response plan, brought in external advisors, notified law enforcement, and says it has since blocked the activity and seen no follow-up.

Itron states business operations were not materially disrupted and that the intrusion did not reach customer environments, though the scope investigation is still open. Insurance is expected to absorb a significant portion of the response costs. No ransomware crew has claimed responsibility.

The disclosure matters because Itron sits deep in critical infrastructure supply chains — it manages 112 million endpoints tied to grid and utility metering. Even an IT-network-only breach at a vendor of this footprint raises questions about lateral access risk to operational technology and customer-facing platforms, pending the final scope assessment.