Schneider Electric, a global leader in energy and industrial automation solutions, has confirmed a cyber attack on its internal systems. The newly formed HellCat group said it had hacked the company’s systems and stolen 40 gigabytes of data and offered a 50% discount if the new CEO publicly acknowledged the attack.
HellCat infiltrated the company’s systems via Atlassian Jira and stole project data, developer names, email addresses, access to applications, and over 400,000 lines of sensitive records. The hackers demanded a ransom of $125,000 and threatened to release the stolen data.
The hackers left a sarcastic message to Olivier Blume, the new CEO of Schneider Electric, offering a 50% discount on the ransom if he publicly acknowledged the attack. This comes shortly after Blum took over after falling out with former CEO Peter Helveck. Previously, the company had already become a victim of cyberattacks by groups Cl0p and Cactus, during which financial documents, copies of passports and other vital information were stolen.
These incidents highlight the seriousness of cyber security challenges in the energy and industrial sectors. Although Schneider Electric has confirmed that its products and services have not been affected by the attacks, these incidents raise concerns about the security of data for internal developers and customers, who have repeatedly been attacked by various cybercriminal groups.