MOVEit Transfer App Faces Third Flaw Amidst Ransomware Attack and Cyberattacks on US Banks and Universities.

June 16, 2023 at 03:35 AM

•

1 min read

MOVEit Transfer App Faces Third Flaw Amidst Ransomware Attack and Cyberattacks on US Banks and Universities. — Photo: The Hacker News

TL;DR Summary

Progress Software has disclosed a third vulnerability in its MOVEit Transfer application, which is yet to be assigned a CVE identifier, that could lead to escalated privileges and potential unauthorized access to the environment. The Cl0p ransomware gang has been deploying extortion tactics against affected companies, and the vulnerability has been exploited in data theft attacks. Progress Software is urging its customers to disable all HTTP and HTTPs traffic to MOVEit Transfer on ports 80 and 443 to safeguard their environments while a patch is being prepared to address the weakness.

Topics:business #cl0p-ransomware #cyber-attack-ransomware #data-theft-attacks #moveit-transfer #progress-software #sql-injection-vulnerability

Share this article

Third Flaw Uncovered in MOVEit Transfer App Amidst Cl0p Ransomware Mass Attack The Hacker News
Ransomware gang lists first victims of MOVEit mass-hacks, including US banks and universities TechCrunch
US federal agencies hit by cyberattack -- what you need to know about MOVEit SDxCentral
MOVEit Transfer customers warned of new flaw as PoC info surfaces BleepingComputer
MOVEit mayhem 3: “Disable HTTP and HTTPS traffic immediately” Naked Security

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

78%

413 → 91 words

Want the full story? Read the original article

Read on The Hacker News

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights