Security Experts:

Connect with us

Hi, what are you looking for?



IT Services Giant SHI International Hit by Cyberattack

Information technology solutions provider SHI International is struggling to fully restore systems and operations after being hit with a crippling cyberattack over the 4th of July weekend.

Information technology solutions provider SHI International is struggling to fully restore systems and operations after being hit with a crippling cyberattack over the 4th of July weekend.

Based in New Jersey, the IT reseller and services company has over 5,000 employees worldwide and works with numerous government and commercial enterprise organizations.

The incident, which SHI describes as a “coordinated and professional malware attack,” forced the company to shut down many of its systems, some of which are still offline.

As of July 8, SHI’s website is still down, displaying a cyber incident notification that provides scarce details on the attack. The same announcement was published on the company’s blog.

“Thanks to the quick reactions of the security and IT teams at SHI, the incident was swiftly identified and measures were enacted to minimize the impact on SHI’s systems and operations,” the notification reads.

“These preventative measures included taking some systems, including SHI’s public websites and email, offline while the attack was investigated and the integrity of those systems was assessed,” the note continues.

Per the announcement, the company was able to restore employee access to email shortly after the attack, allowing customers to contact their “account teams and specialists via both email and phone.”

“IT teams at SHI continue to work on bringing other systems back to full availability in a secure and reliable manner,” the notification reads.

According to SHI, there was no evidence of customer data being exfiltrated during the attack. “No third-party systems in the SHI supply chain were affected,” the company also said.

SHI did not provide further details on the attack, but the fact that systems were taken offline and that restoration efforts are still ongoing suggests that ransomware might have been involved.

The attack on SHI occured one year after software maker Kaseya was hit by the REvil ransomware gang, which resulted in between 800 and 1,500 organizations being infected. The attackers demanded tens of millions of dollars in exchange for decryption keys.

Related: The Vulnerable Maritime Supply Chain – a Threat to the Global Economy

Related: Software Supply Chain Attacks Tripled in 2021: Study

Related: North Korean Hackers Targeting IT Supply Chain: Kaspersky

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn best practices that organizations can use to improve both their resilience to new threats and their response times to incidents.


Join this live webinar as we explore the potential security threats that can arise when third parties are granted access to a sensitive data or systems.


Expert Insights

Related Content


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.


The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Application Security

PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign.


No one combatting cybercrime knows everything, but everyone in the battle has some intelligence to contribute to the larger knowledge base.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...


As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.