MOVEit Exploit Used by Ransomware Gang for Data Theft, Microsoft and CISA Warn

June 5, 2023 at 12:54 PM

•

1 min read

MOVEit Exploit Used by Ransomware Gang for Data Theft, Microsoft and CISA Warn — Photo: BleepingComputer

TL;DR Summary

Microsoft has linked the Clop ransomware gang to recent data theft attacks that exploited a zero-day vulnerability in the MOVEit Transfer platform. The attacks began on May 27th, with the threat actors dropping webshells on servers to steal data and credentials. Microsoft is attributing the attacks to Lace Tempest, also known as TA505, FIN11, or DEV-0950. The Clop ransomware operation is known for targeting managed file transfer software and is expected to begin extorting victims soon.

Topics:business #clop-ransomware #cybersecurity #data-theft #lace-tempest #microsoft #zero-day-vulnerability

Share this article

Microsoft links Clop ransomware gang to MOVEit data-theft attacks BleepingComputer
Ransomware Group Used MOVEit Exploit to Steal Data From Dozens of Organizations SecurityWeek
Microsoft: Lace Tempest Hackers Behind Active Exploitation of MOVEit Transfer App The Hacker News
CISA warns of critical vulnerability in MOVEit file transfer software SiliconANGLE News
CISA orders govt agencies to patch MOVEit bug used for data theft BleepingComputer

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

84%

461 → 76 words

Want the full story? Read the original article

Read on BleepingComputer

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights