SHI International Corp., formerly Software House International, is a New Jersey-based provider of Information Technology (IT) products and services that has been hit by a “coordinated and professional malware attack”
On Wednesday, SHi In a blog post and a message splashed across the front page of its website said that it was the target of a “coordinated and professional malware attack” during the long weekend that caused various disruptions over its network.
SHI has taken some preventative measures including taking some systems, including SHI’s public websites and email, offline while the attack was investigated and the integrity of those systems was being assessed.
In a recent press release, SHI claims to be one of North America’s largest IT solutions providers, with $12.3 billion in revenue in 2021 and 5,000 employees around the world in operations centers in the U.S., the United Kingdom, and the Netherlands.
However, SHI also says that it provides services to over 15,000 corporate, enterprise, public sector, and academic customer organizations worldwide.
“Thanks to the quick reactions of the security and IT teams at SHI, the incident was swiftly identified and measures were enacted to minimize the impact on SHI’s systems and operations.”
SHI said in its message that it also notified law enforcement officials about the attack.
Indeed, as of 6 p.m. ET on Wednesday, SHI’s website was still largely down, except for a message to warn its customers and visitors that its information systems were undergoing maintenance due to a “sustained outage.”
Since the attack, some website pages are also returning Amazon CloudFront/S3 SHI errors, which persisted until this article was published.
As of this morning (July 6th), SHI staff now have access to email again and the IT teams at SHI continue to work on bringing other systems back to full availability securely and reliably.
“While the investigation into the incident is ongoing – and SHI is liaising with federal bodies including the FBI and CISA – there is no evidence to suggest that customer data was exfiltrated during the attack,” the company added.
Customers have full access to their account teams and specialists via both email and phone.
While the investigation into the incident is ongoing – and SHI is liaising with federal bodies including the FBI and CISA – there is no evidence to suggest that customer data was exfiltrated during the attack. No third-party systems in the SHI supply chain were affected.
SHI will keep customers informed as we return to business as usual.