Clop Ransomware Exploits MOVEit Vulnerability for Years.
The Clop ransomware gang has been testing a zero-day vulnerability in the MOVEit Transfer managed file transfer solution since 2021, according to Kroll security experts. The threat actors were also testing ways to collect and extract sensitive data from compromised MOVEit Transfer servers as far back as April 2022, likely with the help of automated tools. The automated malicious activity picked up on a much larger scale starting on May 15, 2023, right before the zero-day bug mass exploitation began on May 27. Clop has threatened all affected organizations to reach out and negotiate a ransom if they don't want their data leaked online in six days, on June 14.