Schneider Electric confirms being affected by MOVEit hack, denies data breach

Energy management and automation company Schneider Electric said it suffered a data breach as a result of the Clop ransomware group exploiting a zero-day vulnerability in the MOVEit Transfer web application.

Recently, the Clop ransomware group said it successfully victimised Schneider Electric and demanded the company pay a ransom to stop it from leaking the stolen files. The group eventually published the stolen files after the company did not meet its ransom demand.

In a statement given to the media, the French automation and energy management giant acknowledged the cyber security incident, stating that it is one of the many organistaions that used the MOVEit Transfer application to send and receive files securely and is investigating whether its data was compromised due to the exploitation of vulnerabilities in the application.

“On May 30th, 2023, Schneider Electric became aware of vulnerabilities impacting Progress MOVEit Transfer software. We promptly deployed available mitigations to secure data and infrastructure and have continued to monitor the situation closely.

“Subsequently, on June 26th, 2023, Schneider Electric was made aware of a claim mentioning that we have been the victim of a cyber-attack relative to MOVEit vulnerabilities. Our cybersecurity team is currently investigating this claim as well,” the statement reads.

The company clarified that no critical data has been compromised and its operations have not been affected by the cyber security incident.

Schneider Electric is one of the many organisations that has been affected by the global cyber security incident. Earlier this month, Oil and gas giant Shell disclosed that it was also affected by the global security breach orchestrated by the Clop ransomware gang that exploited a zero-day vulnerability in the MOVEit file transfer tool.

Other major organisations affected by the breach include the BBC, British Airways, drug retailer Boots, Ofcom, and many more. The Louisiana Office of Motor Vehicles (OMV) and the Oregon Department of Transportation (ODOT) also said that they suffered data breaches as a result of the Clop ransomware group exploiting a zero-day vulnerability in the MOVEit Transfer web application.