19 July 2023  — 
Eric Swotinsky

Siemens Energy confirms data breach after MOVEit attack

Siemens Energy, a Munich-based energy technology company with a revenue of €32 billion, has confirmed that their data was stolen in the recent Clop ransomware data-theft attacks, which exploited a zero-day vulnerability in the MOVEit Transfer platform.

Siemens employs 91,000 people globally, and offers industrial products — including industrial control systems and renewable energy systems — along with cybersecurity consulting services for the oil and gas industry. Clop has listed Siemens Energy on their data leak site. Although no data has been leaked yet, a Siemens Energy spokesperson acknowledged the breach and the utilization of the MOVEit Transfer zero-day vulnerability (CVE-2023-34362). However, they stated that no critical data was stolen, and business operations remained unaffected.

The Clop gang also claimed to have stolen data from another industry giant, Schneider Electric. This French multinational company, with an annual revenue of over $37 billion, specializes in digital automation and energy management. While Schneider Electric has not confirmed the claims, Clop’s previously disclosed breaches lend credibility to the gang’s assertions.

The Active Protection included in Acronis Cyber Protect Cloud detects and blocks ransomware from Clop and other groups, keeping your data safe from encryption or extortion. The Advanced Data Loss Prevention pack monitors access to your data and helps to prevent its exfiltration.