IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

SHI malware attack causes major disruption and forces staff offline

IT supplier says there's no evidence to suggest customer data was exfiltrated during the "security incident" attack

IT supplier SHI has been struck by a “security incident”, causing major disruption to the company by forcing its staff offline.

In a statement on its website, the firm said it had become the victim of a “coordinated and professional malware attack” over the Fourth of July holiday weekend – but measures had been taken to limit the impact.

The company was keen to stress it had found no evidence that customer data or supply chain systems had been compromised.

“Thanks to the quick reactions of the security and IT teams at SHI, the incident was swiftly identified and measures were enacted to minimise the impact on SHI’s systems and operations,” the message read.

SHI is headquartered in Somerset, New Jersey, and specialises in providing technology products and services across the IT spectrum. Since its founding in 1989, it has grown to incorporate around 5,000 employees across offices in the US, UK, Canada, France, Hong Kong, and Singapore.

In the wake of this malware attack, the company said it took some systems offline while the attack was being investigated and the integrity of the systems assessed – that included the supplier’s public websites and email.

Related Resource

Solve cyber resilience challenges with storage solutions

Fundamental capabilities of cyber-resilient IT infrastructure

Whitepaper cover with title on grey rectangle with top header banner and ESG logoFree Download

However, staff emails were restored by the morning of 6 July, with SHI’s IT teams continuing to work on bringing other systems back to full availability “in a secure and reliable manner”. At the time of writing, the company’s website was still down and showing the statement.

“Customers have full access to their account teams and specialists via both email and phone,” SHI clarified.

The IT supplier said it was continuing to investigate the incident and is liaising with federal bodies including the FBI and CISA – but stressed that it had seen no evidence that customer data had been compromised.

“There is no evidence to suggest that customer data was exfiltrated during the attack. No third-party systems in the SHI supply chain were affected,” it said. “SHI will keep customers informed as we return to business as usual.”

Featured Resources

The state of Salesforce: Future of business

Three articles that look forward into the changing state of Salesforce and the future of business

Free Download

The mighty struggle to migrate SAP to the cloud may be over

A simplified and unified approach to delivering Enterprise Transformation in the cloud

Free Download

The business value of the transformative mainframe

Modernising on the mainframe

Free Download

The Total Economic Impact™ Of IBM FlashSystem

Cost savings and business benefits enabled by FlashSystem

Free Download

Recommended

Hackers could use new Wslink malware in highly targeted cyber attacks
malware

Hackers could use new Wslink malware in highly targeted cyber attacks

1 Nov 2021
FBI raids Chinese POS business following cyber attack claims
malware

FBI raids Chinese POS business following cyber attack claims

27 Oct 2021
Malware developers create malformed code signatures to avoid detection
malware

Malware developers create malformed code signatures to avoid detection

24 Sep 2021

Most Popular

Cyber attack on software supplier causes "major outage" across the NHS
cyber attacks

Cyber attack on software supplier causes "major outage" across the NHS

8 Aug 2022
Why convenience is the biggest threat to your security
Sponsored

Why convenience is the biggest threat to your security

8 Aug 2022
Electrical explosion reported at Google's Iowa data centre
data centres

Electrical explosion reported at Google's Iowa data centre

9 Aug 2022