GEBE

N.V. GEBE is a utility company headquartered in Sint Maarten, providing essential electrical and water distribution services to the island. The organization manages core operational pillars including power generation, transmission, and water supply, serving residential, commercial, and public sector customers across its territory. Its customer-facing functions encompass account management, billing, and service connections, historically supported by online portals and alternative payment channels. The company operates as a critical infrastructure provider, where continuity of electricity and water services is paramount for community stability and economic activity. Its public communications and incident reports confirm a direct relationship with the consumer base, handling routine transactions as well as emergency responses. The nature of its services places it within the essential utilities sector, subject to the operational demands and public expectations inherent to that industry. While its precise scale in terms of customer count or infrastructure footprint is not quantified in the provided material, its role is described as central to the island's daily functioning. The organization's identity as "N.V." indicates it is structured as a public limited company under the legal framework common in the Kingdom of the Netherlands, though specific ownership details or parent-subsidiary relationships are not elaborated.

The company's recent history is notably defined by its response to significant cybersecurity incidents, which have shaped its operational and reputational posture. In March 2022, a ransomware attack attributed to the BlackByte criminal group directly disrupted its corporate IT systems, forcing the closure of offices and incapacitating online customer portals. Despite this, the core electrical and water distribution networks remained operational, demonstrating a separation between corporate IT and critical operational technology systems. The incident necessitated immediate procedural adaptations, including a shift to manual verification for payments via WhatsApp or live chat and the implementation of temporary in-person processes for account services. A subsequent suspicious activity event in December 2022 prompted a precautionary, proactive shutdown of critical systems for assessment, involving a joint internal IT task force and external cybersecurity specialists. Both incidents were resolved without evidence of data exfiltration or network compromise affecting core utilities, and the organization emphasized continuous monitoring and system restoration efforts. Management communications following these events consistently highlighted a commitment to service reliability, infrastructure protection, and transparent customer communication during disruptions, framing cybersecurity as an integral component of its operational resilience strategy.