Shutterfly Says People Data Is Safe Following Ransomware Incident

Photography service Shutterfly is among the latest victims of Clop ransomware, but maintains that customer and employee data is safe.

Exploiting critical weaknesses in the popular MOVEit file transfer tool, Clop ransomware operators have compromised the computer networks of hundreds of companies, many of them leaders in their respective industries.

Shutterfly, the giant photography service headquartered in California, is the latest victim up on Clop’s data leak site.

In addition to Shutterfly.com, the company also operates brands such as Spoonflower, Snapfish, Lifetouch, and Shutterfly Business Solutions (SBS).

The Clop ransomware crew made the entry this week, saying that “the company doesn’t care about its customers [and] it ignored their security!!!”

But in a statement offered to Bleeping Computer, a Shutterfly spokesperson begs to differ.

“Shutterfly can confirm that it was one of the many companies impacted by the MOVEit vulnerability. Shutterfly's enterprise business unit, Shutterfly Business Solutions (SBS), has used the MOVEit platform for some of its operations,” the spokesperson tells the cybernews site.

“Upon learning of the vulnerability in early June, the company quickly took action, taking relevant systems offline, implementing patches provided by MOVEit, and commencing a forensics review of certain systems with the assistance of leading forensic firms.”

"After a thorough investigation with the assistance of a leading third-party forensics firm, we have no indication that that any Shutterfly.com, Snapfish, Lifetouch nor Spoonflower consumer data nor any employee information was impacted by the MOVEit vulnerability,” the spokesperson said.

It is unclear what data Clop plans on using to extort the photo giant. If it’s Shutterfly’s assessment that people data is safe, the only leverage Clop might have – if they managed to snag anything at all – is intellectual property.

The list of companies compromised by Clop through unpatched MOVEit instances continues to grow every week.

In June, MOVEit vendor Progress Software warned that its file transfer platform was suffering a total of three vulnerabilities that threat actors could exploit. The company offers IT administrators multiple resources to mitigate attacks.

In response to customer feedback, Progress Software has formalized a regular Service Pack program to provide more frequent updates and a more seamless process for deploying security fixes.

Bitdefender Digital Identity Protection lets you instantly find out if your data has leaked online, what type of information was compromised, what risks you face, and whether your information is for sale on the dark web.