MOVEit Transfer Vulnerabilities Uncovered - Urgent Patch Required.

June 10, 2023 at 08:50 AM

•

1 min read

MOVEit Transfer Vulnerabilities Uncovered - Urgent Patch Required. — Photo: The Hacker News

TL;DR Summary

Progress Software has released patches to address new SQL injection vulnerabilities affecting MOVEit Transfer that could allow an attacker to gain unauthorized access to the database and steal sensitive information. Cybersecurity firm Huntress discovered and reported the vulnerabilities, and the flaws have been addressed in the latest versions of the service. The Cl0p ransomware gang has been exploiting a previously reported vulnerability in MOVEit Transfer to drop web shells on targeted systems and has issued an extortion notice to affected companies.

Topics:business #cl0p-ransomware-gang #cybersecurity #data-theft #moveit-transfer #patch #sql-injection-vulnerabilities

Share this article

New Critical MOVEit Transfer SQL Injection Vulnerabilities Discovered - Patch Now! The Hacker News
The Week in Ransomware - June 9th 2023 - It’s Clop... Again! BleepingComputer
Brand-New Security Bugs Affect All MOVEit Transfer Versions DARKReading
Progress issues new patch for MOVEit Transfer after more vulnerabilities found SC Media
New MOVEit Transfer critical flaws found after security audit, patch now BleepingComputer

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

81%

436 → 81 words

Want the full story? Read the original article

Read on The Hacker News

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights