Massive Data Theft: Hackers Exploit Zero-Day in Popular File Transfer Tool.
TL;DR Summary
Hackers are exploiting a newly discovered vulnerability in Ipswitch's MOVEit Transfer managed file transfer (MFT) software to launch mass data exfiltration attacks. The vulnerability could lead to escalated privileges and potential unauthorized access to the environment. The affected software is used by thousands of organizations around the world, and more than 2,500 MOVEit Transfer servers are discoverable on the internet. Security researchers have observed evidence of exploitation and data theft from at least four separate incidents. Progress has urged users to disable internet traffic to their MOVEit Transfer environment and apply the necessary updates.
Topics:business#cybersecurity#data-exfiltration#exploitation#file-transfer-tool#ipswitch#vulnerability
- Hackers launch another wave of mass-hacks targeting company file transfer tools TechCrunch
- New MOVEit Transfer zero-day mass-exploited in data theft attacks BleepingComputer
- Hackers use flaw in popular file transfer tool to steal data, researchers say Reuters
- MOVEit Transfer has a major security issue - here's what you need to know TechRadar
- Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations SecurityWeek
Reading Insights
Total Reads
0
Unique Readers
0
Time Saved
3 min
vs 4 min read
Condensed
85%
615 → 94 words
Want the full story? Read the original article
Read on TechCrunch