On November 20, 2023, the Vermont Office of the Attorney General reported a data breach involving Enstar (US) Inc. The breach occurred due to a zero-day vulnerability in Progress Software's MOVEit Transfer tool between May 29, 2023, and May 31, 2023. The breach allowed an unauthorized actor, identified as the criminal group 'CL0P', to access data on the server, affecting approximately 103 Rhode Island residents and potentially exposing their names and additional unspecified personal information.
TPRM report: https://www.rankiteo.com/company/enstar-group-ltd
"id": "ens349072625",
"linkid": "enstar-group-ltd",
"type": "Vulnerability",
"date": "5/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 103,
'name': 'Enstar (US) Inc.',
'type': 'Company'}],
'attack_vector': 'Zero-day vulnerability',
'data_breach': {'number_of_records_exposed': 103,
'type_of_data_compromised': ['Names',
'Unspecified personal '
'information']},
'date_detected': '2023-11-20',
'date_publicly_disclosed': '2023-11-20',
'description': 'A data breach occurred at Enstar (US) Inc. due to a zero-day '
"vulnerability in Progress Software's MOVEit Transfer tool, "
"allowing the criminal group 'CL0P' to access data on the "
'server.',
'impact': {'data_compromised': ['Names', 'Unspecified personal information'],
'systems_affected': 'MOVEit Transfer tool'},
'initial_access_broker': {'entry_point': 'Zero-day vulnerability in MOVEit '
'Transfer tool'},
'motivation': 'Data theft',
'post_incident_analysis': {'root_causes': 'Zero-day vulnerability in Progress '
"Software's MOVEit Transfer tool"},
'references': [{'date_accessed': '2023-11-20',
'source': 'Vermont Office of the Attorney General'}],
'threat_actor': 'CL0P',
'title': 'Data Breach at Enstar (US) Inc.',
'type': 'Data Breach',
'vulnerability_exploited': "Progress Software's MOVEit Transfer tool"}