Schneider Electric Investigating Security ‘Incident’ After Reported Hacker Claims

The provider of power management technologies confirmed that a developer platform was impacted by ‘unauthorized access.’

Schneider Electric confirmed Monday that a developer platform used by the company was impacted by a “cybersecurity incident” that is now under investigation.

According to a BleepingComputer report, a threat actor has claimed, during a conversation with the media outlet, to have stolen data from Schneider Electric in connection with compromising a Jira server operated by the company.

Schneider Electric said in a statement to CRN Monday that it was “investigating a cybersecurity incident involving unauthorized access to one of our internal project execution tracking platforms.”

The platform is hosted inside of an “isolated” environment, according to the statement from Schneider Electric, a major technology provider in segments including power management and industrial automation.

“Our Global Incident Response team has been immediately mobilized to respond to the incident,” the company said in the statement, adding that “Schneider Electric’s products and services remain unaffected.”

The statement did not specify when the incident is believed to have occurred or provide further details on the impact.

The threat actor who claimed to have compromised the Schneider Electric developer platform has also threatened to leak the stolen data online, BleepingComputer reported.

The incident follows a January ransomware attack that impacted Schneider Electric Sustainability Business division, which affected systems including its Resource Advisor service.

Earlier, in mid-2023, the cybercriminal group Clop had named Schneider Electric among the alleged victims in its widespread attacks exploiting Progress’ MOVEit file transfer software.