Progress Software

Several US federal agencies and 'several hundred' US companies and organizations have been affected by a global cyberattack perpetrated by Russian cybercriminals exploiting vulnerabilities in MOVEit software, made by Progress Software. The Department of Energy confirmed compromises within its entities, with potential leaks of sensitive personal and financial data, including health billing records from institutions like Johns Hopkins University. No significant impacts on federal civilian agencies have taken place, and opportunistic hacking attempts continue to target various sectors, applying pressure on officials committed to combating ransomware. Progress Software has communicated mitigation steps to customers and temporarily taken MOVEit Cloud offline for urgent patching.

Source: https://www.cnn.com/2023/06/15/politics/us-government-hit-cybeattack/index.html

"id": "pro1006051224",
"linkid": "progress-software",
"type": "Vulnerability",
"date": "03/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"