Vestas Wind Systems — Regulatory Filings 2021

Nov 22, 2021

Company announcement from Vestas Wind Systems A/S

Aarhus, 22 November 2021 Company announcement no. 23/2021 Page 1 of 1

Update on cyber security incident

Vestas discovered a cyber security incident during 19 November 2021 and has since then together with external partners worked around the clock to contain the situation and re-establish the integrity of its IT systems.

The company's preliminary findings indicate that the incident has impacted parts of Vestas' internal IT infrastructure and that data has been compromised. At this stage, the work and investigation are still ongoing.

However, there is no indication that the incident has impacted third party operations, including customer and supply chain operations. Vestas' manufacturing, construction and service teams have been able to continue operations, although several operational IT systems have been shut down as a precaution. Vestas has already initiated a gradual and controlled reopening of all IT systems.

Vestas is doing its utmost to keep stakeholders informed about the situation and will provide further updates when possible.

Contact details Vestas Wind Systems A/S, Denmark

Mathias Dalsten, Vice President, Investor Relations Tel: +45 2829 5383

Anders Riis, Vice President, Communications Tel: +45 4181 3922