Siemens Energy, the energy arm of German manufacturing giant Siemens, has confirmed it has been breached, while French engineering company Schneider Electric is investigating after its name was posted on Cl0p’s darkweb leaksite.
As per the statement from Siemens Energy said they have been impacted by what it describes as a “global security incident”. Based on the current analysis, no critical data has been compromised, and our operations have not been affected.
Schneider Electric, meanwhile, says it is investigating the claims.
These two companies join an ever-growing list of victims of the vulnerability in MOVEit Transfer, a popular file transfer software used to move information securely. Publisher Progress Software disclosed the flaw three weeks ago and issued a patch, but it has already been widely exploited.
Earlier this month, the BBC and British Airways admitted to being attacked, and the latest batch of victims posted on the Cl0p blog include the University of California, Los Angeles (UCLA), pharmaceutical business AbbVie and NYC Public School