Several US federal agencies and 'several hundred' US companies and organizations have been affected by a global cyberattack perpetrated by Russian cybercriminals exploiting vulnerabilities in MOVEit software, made by Progress Software. The Department of Energy confirmed compromises within its entities, with potential leaks of sensitive personal and financial data, including health billing records from institutions like Johns Hopkins University. No significant impacts on federal civilian agencies have taken place, and opportunistic hacking attempts continue to target various sectors, applying pressure on officials committed to combating ransomware. Progress Software has communicated mitigation steps to customers and temporarily taken MOVEit Cloud offline for urgent patching.
Source: https://www.cnn.com/2023/06/15/politics/us-government-hit-cybeattack/index.html
TPRM report: https://scoringcyber.rankiteo.com/company/progress-software
"id": "pro1006051224",
"linkid": "progress-software",
"type": "Vulnerability",
"date": "03/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': 'Energy',
'location': 'United States',
'name': 'Department of Energy',
'type': 'Government Agency'},
{'industry': 'Education',
'location': 'United States',
'name': 'Johns Hopkins University',
'type': 'Educational Institution'}],
'attack_vector': 'Exploiting software vulnerabilities',
'data_breach': {'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal data',
'Financial data',
'Health billing records']},
'description': "Several US federal agencies and 'several hundred' US "
'companies and organizations have been affected by a global '
'cyberattack perpetrated by Russian cybercriminals exploiting '
'vulnerabilities in MOVEit software, made by Progress '
'Software. The Department of Energy confirmed compromises '
'within its entities, with potential leaks of sensitive '
'personal and financial data, including health billing records '
'from institutions like Johns Hopkins University. No '
'significant impacts on federal civilian agencies have taken '
'place, and opportunistic hacking attempts continue to target '
'various sectors, applying pressure on officials committed to '
'combating ransomware. Progress Software has communicated '
'mitigation steps to customers and temporarily taken MOVEit '
'Cloud offline for urgent patching.',
'impact': {'data_compromised': ['Sensitive personal data',
'Financial data',
'Health billing records']},
'response': {'containment_measures': ['Mitigation steps communicated',
'MOVEit Cloud taken offline'],
'remediation_measures': ['Urgent patching']},
'threat_actor': 'Russian cybercriminals',
'title': 'Global Cyberattack Exploiting MOVEit Software Vulnerabilities',
'type': 'Cyberattack',
'vulnerability_exploited': 'Vulnerabilities in MOVEit software'}