Shell reports they were impacted by the MOVEit vulnerability and attack
Learn More
After having a bad day with the data breach of their recharging services, Shell has confirmed that it was targeted by the Clop ransomware group, who breached the MOVEit file transfer tool.
The tool was used by Shell employees and customers. This is the second time Shell has been impacted by Clop's attack on a file transfer service. Shell previously experienced a Clop attack in 2021 when the gang targeted Accellion's file transfer appliance.
No details are available as to which systems were compromised, how many individuals are impacted or what data was exposed.
Shell stated that there is no evidence of any impact on its core IT systems, and their IT teams are actively investigating the incident. The company emphasized that it is not engaging with the hackers.
Update - In a brief statement issued on Wednesday 5th July, Shell confirmed being hit by the MOVEit hack, clarifying that the MFT software was “used by a small number of Shell employees and customers”.
“Some personal information relating to employees of the BG Group has been accessed without authorisation,” the company said.
It’s unclear exactly what type of information has been compromised, but impacted individuals are being notified.
Shell pointed out that “this was not a ransomware event” — likely referring to the fact that file-encrypting malware was not deployed in the attack — and that there is no evidence of any other IT systems being affected.
