Wednesday, March 26, 2025
HomeData BreachSHI Hacked - IT Service Giant Breached Via Professional Malware Attack

SHI Hacked – IT Service Giant Breached Via Professional Malware Attack

Published on

SIEM as a Service

Follow Us on Google News

SHI International Corp., formerly called Software House International, is a privately-owned provider of technology products and services, headquartered in Somerset, New Jersey. On July 4th, SHI was hit by a professional malware attack that indeed caused various disruptions.

SHI has been counted among North America’s top 15 largest providers of IT solutions. It has 5,000 employees across more than 35 offices in the United States, Canada, France, Hong Kong, Singapore, and the United Kingdom.

SHI said, “Over the Fourth of July holiday weekend, SHI was the target of a coordinated and professional malware attack. Thanks to the quick reactions of the security and IT teams at SHI, the incident was swiftly identified and measures were enacted to minimize the impact on SHI’s systems and operations”.

Following the attack, as a precautionary, SHI’s public websites and email were taken offline and the attack was investigated and the integrity of those systems was assessed.

SHI maintenance message

According to SHI, “The IT teams at SHI continue to work on bringing other systems back to full availability in a secure and reliable manner.”

They also ensured that their customers will have full access to their account teams and specialists via both email and phone. SHI mentioned that the investigation is still ongoing – and SHI is liaising with federal bodies including the FBI and CISA.

They also said that there is no evidence to suggest that customer data was exfiltrated during the attack.  No third-party systems in the SHI supply chain were affected. The company ensured that they will keep customers informed as they return to business as normal.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

APT Hackers Exploit Google Chrome Zero-Day in Operation ForumTroll to Bypass Sandbox Protections

In mid-March 2025, Kaspersky researchers uncovered a sophisticated APT attack, dubbed Operation ForumTroll, which...

New Sophisticated Linux Backdoor Targets OT Systems via 0-Day RCE Exploit

Researchers at QiAnXin XLab have uncovered a sophisticated Linux-based backdoor dubbed OrpaCrab, specifically targeting...

New Chrome Installer Fails on Windows 10 & 11 With “This app can’t run on your PC” Error

A recent snag in Google's Chrome distribution process has left Windows users unable to...

North Korean Kimsuky Hackers Deploy New Tactics and Malicious Scripts in Recent Attacks

Security researchers have uncovered a new attack campaign by the North Korean state-sponsored APT...

Supply Chain Attack Prevention

Free Webinar - Supply Chain Attack Prevention

Recent attacks like Polyfill[.]io show how compromised third-party components become backdoors for hackers. PCI DSS 4.0’s Requirement 6.4.3 mandates stricter browser script controls, while Requirement 12.8 focuses on securing third-party providers.

Join Vivekanand Gopalan (VP of Products – Indusface) and Phani Deepak Akella (VP of Marketing – Indusface) as they break down these compliance requirements and share strategies to protect your applications from supply chain attacks.

Discussion points

Meeting PCI DSS 4.0 mandates.
Blocking malicious components and unauthorized JavaScript execution.
PIdentifying attack surfaces from third-party dependencies.
Preventing man-in-the-browser attacks with proactive monitoring.

More like this

Four Members of Hacker Group Behind 90 Worldwide Data Breaches Exposed

A recent investigation by Group-IB has shed light on a notorious cybercriminal operating under...

China’s Baidu Compromised in Data Leak, Affecting Users

Chinese tech giant Baidu has faced severe scrutiny after allegations emerged that a top...

Infosys to Pay $17.5M in Settlement for 2023 Data Breach

Infosys, a leading IT services company, has announced that it has reached an agreement...