MOVEit Vulnerabilities Expose Organizations to Ransomware Attacks.

June 19, 2023 at 11:56 AM

•

1 min read

MOVEit Vulnerabilities Expose Organizations to Ransomware Attacks. — Photo: Help Net Security

TL;DR Summary

Progress Software has fixed a third SQL injection vulnerability (CVE-2023-35708) in its MOVEit Transfer web application, which could lead to escalated privileges and unauthorized access. The Cl0p cyber extortion gang exploited a previous vulnerability (CVE-2023-34362) to grab enterprise data and has started disclosing the names of victim organizations, including Shell, banks, media companies, and universities. Progress Software has urged customers to update their MOVEit Transfer installations to the latest versions to fix the vulnerability.

Topics:business #cl0p #cybersecurity #data-breach #moveit-transfer #progress-software #sql-injection-vulnerability

Share this article

A third MOVEit vulnerability fixed, Cl0p lists victim organizations (CVE-2023-35708) Help Net Security
MOVEit Vulnerability Exposed on Twitter Before Hack Bloomberg
MOVEit Customers Urged to Patch Third Critical Vulnerability SecurityWeek
Ransomware gang haunted US firms long before MOVEit hack The Star Online
Progress Software moves on another MOVEit vulnerability iTnews

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 2 min read

Condensed

80%

379 → 74 words

Want the full story? Read the original article

Read on Help Net Security

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights