cyber Vulnerability

AbbVie

Jul 9, 2023 1 min read
AbbVie

The industrial behemoths Schneider Electric, werum.com, UCLA (http://ucla.edu), Abbie (http://abbvie.com), and Siemens Energy are among the five new MOVEit attacks victims listed on the dark web leak site for the Clop ransomware organization. Industrial Control Systems (ICS) are offered by Siemens Energy and Schneider Electric and are employed in crucial national infrastructures all over the world.

Threat actors assert that by using the recently discovered MOVEit Transfer vulnerability CVE-2023-34362, they were able to breach 100 different businesses.

Incentives are provided by the US government for intelligence that results in the capture, indictment, or location of threat actors.

Source: https://securityaffairs.com/147865/data-breach/schneider-electric-siemens-energy-moveit.html

TPRM report: https://scoringcyber.rankiteo.com/company/abbvie

"id": "abb0473723",
"linkid": "abbvie",
"type": "Breach",
"date": "06/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Industrial Control Systems',
                        'location': 'Global',
                        'name': 'Schneider Electric',
                        'type': 'Company'},
                       {'name': 'werum.com', 'type': 'Company'},
                       {'industry': 'Education',
                        'location': 'Los Angeles, CA',
                        'name': 'UCLA',
                        'type': 'Educational Institution'},
                       {'name': 'Abbie', 'type': 'Company'},
                       {'industry': 'Industrial Control Systems',
                        'location': 'Global',
                        'name': 'Siemens Energy',
                        'type': 'Company'}],
 'attack_vector': 'Exploitation of Vulnerability',
 'description': 'The Clop ransomware organization has listed five new victims '
                'of MOVEit attacks on the dark web, including Schneider '
                'Electric, werum.com, UCLA, Abbie, and Siemens Energy. The '
                'threat actors claim to have breached 100 different businesses '
                'using the recently discovered MOVEit Transfer vulnerability '
                'CVE-2023-34362.',
 'motivation': 'Financial gain',
 'ransomware': {'ransomware_strain': 'Clop'},
 'references': [{'source': 'UCLA', 'url': 'http://ucla.edu'},
                {'source': 'Abbie', 'url': 'http://abbvie.com'}],
 'response': {'law_enforcement_notified': 'US government incentives for '
                                          'intelligence'},
 'threat_actor': 'Clop ransomware organization',
 'title': 'MOVEit Transfer Vulnerability Exploited by Clop Ransomware',
 'type': 'Ransomware',
 'vulnerability_exploited': 'CVE-2023-34362'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.