Royal Dutch Shell Plc .com Rotating Header Image

Yet Another Shell Data Protection Breach

Mar 23rd, 2021
by John Donovan.

Yet Another Shell Data Breach

FEBRUARY 2010 BREACH

WORLDS BIGGEST LEAK OF STAFF DATA AFFECTED OVER 176,000 SHELL EMPLOYEES AND CONTRACTORS

Contact 
details 
for 
over 176,000 
employees
 and
 contractors
 of
 Royal
 Dutch 
Shell
 reached John Donovan and some environmental
 and
 human
 rights
 groups,
 ostensibly
 from
 disaffected
 Shell staff
 calling 
for
 a “peaceful
 corporate
 revolution”
 at 
the
 company.

The 
database,
 from
 Shell’s
 internal
 directory contained
 names
 and
 telephone
 numbers
 for
 all
 the company’s
 workforce
 worldwide,
 including 
some
 home
 numbers. It 
was
 supplied
 to John Donovan with
 a
 170­ page
 covering
 note,
 explaining
 that
 it
 was 
being
 circulated 
by 
“116 concerned
 employees 
of 
Shell 
dispersed
 throughout 
the 
USA, 
the 
UK,
 and
 the
 Netherlands”,
 to highlight
 the
 harm 
done 
by 
the
 company’s 
operations 
in 
Nigeria.

A further Shell Data Protection Breach occurred in October 2019. Shell LiveWIRE forum users were warned by Shell of their exposure to potential fraud

Dear Shell LiveWIRE forum user,

As someone who has registered their details on the Shell LiveWIRE UK online forum, we want you to know that we have discovered unauthorised access to user registration data for the platform. Shell LiveWIRE UK, run on behalf of Shell International Limited, is one of Shell’s social investment enterprise development programmes.

As soon as we became aware of the incident, we took the entire UK LiveWIRE website, including the online forum, offline. We immediately notified the relevant data protection authority of the issue and explain below what we recommend you should do now.

What data has been compromised?

The user registration data for the UK LiveWIRE online forum was compromised. This includes user names and passwords and (if provided) email address, date of birth and a link to your social media page.

The latest Shell Data Breach was announced by Shell in March 2021. 

Oil Giant Shell Victimized In December 2020 Hack (FORBES ARTICLE)

Royal Dutch Shell, the parent company of U.S.-based Shell Oil Company, has announced a security incident on its corporate website. Dozens of other companies were impacted by the same attack.

In December of 2020 hackers targeted a specific piece of hardware, Accellion’s File Transfer Appliance, with previously-unreported vulnerabilities. Once they breached the vulnerable servers the hackers began exfiltrating data.

Shell’s breach notice states that some of the files stolen “contained personal data and others included data from Shell companies and some of their stakeholders.”

shellplc.website and its sister non-profit websites royaldutchshellplc.com, royaldutchshellgroup.com, shellenergy.website, shellnazihistory.com, royaldutchshell.website, johndonovan.website, shellnews.net and shell2004.com are owned by John Donovan. There is also a Wikipedia feature.

Posted in: Business ethics, Business Principles, Corporate Governance, GoogleNews, Royal Dutch Shell Plc, Shell, Shell Data Breach.
Tagged: ·

0 Comments on “Yet Another Shell Data Protection Breach”

Leave a Comment

Comment Rules

  • Please show respect to the opinions of others no matter how seemingly far-fetched.
  • Abusive, foul language, and/or divisive comments may be deleted without notice.
  • Each blog member is allowed limited comments, as displayed above the comment box.
  • Comments must be limited to the number of words displayed above the comment box.
  • Please limit one comment after any comment posted per post.

%d bloggers like this: