A cybercrime gang holding the stolen data for ransom has made public the names and company profiles of numerous victims of a massive global hack.
The hacker collective Clop started posting the names of companies on its darknet website on Wednesday.
In an effort to pressure victims into paying, 26 organizations, including banks and universities, have been added.
Targeted entities include US federal agencies.
In response to intrusions affecting their MOVEit applications, several federal agencies are receiving support from the US Cybersecurity and Infrastructure Security Agency, according to CNN.
Although it is unknown which agencies were affected or what data was taken, cyber authorities claim they do not anticipate a significant impact.
Around 50 organizations have so far been confirmed as being a victim of the widespread hack, which is likely to have affected hundreds of businesses around the world.
Companies from the US, Germany, Belgium, Switzerland, and Canada can be found on the hacker's alleged "leak site.".
Shell, a major oil company, confirmed it is a victim after being posted on Wednesday.
The BBC has chosen not to mention the other businesses.
By publishing company profiles, ransomware gangs like Clop use their leak sites to 'name and shame' victims into paying. It is a tried-and-true process that is frequently fruitful.
"Once Clop names businesses to its data leak site, the group will begin its rounds of negotiations with affected organizations, demanding ransom payments in order to prevent their data from being breached, said Chris Morgan, Senior Cyber Threat Intelligence Analyst at ReliaQuest.
According to Mr. Morgan, the hackers will presumably wait for the victims to contact them and set a time limit before their data is made public.
Police forces around the world discourage victims from paying as it feeds these criminal gangs. Clop has been known to demand ransoms of hundreds of thousands, and sometimes millions, of dollars.
The MOVEit hack was first made public on May 31 by US company Progress Software, which claimed that hackers had discovered a way to access its MOVEit Transfer tool.
The majority of MOVEit's users are in the US, but the program is well-known throughout the world for securely moving sensitive files.
As soon as the hack was identified, Progress Software claims to have informed its customers and has immediately made a security update available for download.
However, the thieves were already able to use their access to gain access to the databases of perhaps hundreds of other businesses.
UK-based Zellis, a provider of payroll services, was a MOVEit user who was later violated. Home addresses, social security numbers, and, in some cases, bank account information were among the information stolen, according to Zellis, which has confirmed that eight UK organizations were affected.
Not all businesses have had the same data made public.
The BBC, British Airways, Aer Lingus, and Boots are just a few of the Zellis clients who have had their data compromised.
