A global cyberattack targeting US federal government agencies and companies exploited a vulnerability in MOVEit software, made by Progress Software. The breach, orchestrated by Russian cybercriminals, affected the Department of Energy, including specific entities like Oak Ridge Associated Universities and a contractor for the Department of Energy's Waste Isolation Pilot Plant in New Mexico. While no ransom demands were reported to federal agencies, the potential for significant data loss and disruption is evident. The attackers, belonging to the ransomware gang Clop, threatened to leak sensitive data if ransoms were not paid, posing a significant threat to financial, personal, and national security information. Johns Hopkins University and Georgia's state-wide university system are among the victims, indicating the breach's extensive impact on educational institutions, government entities, and potentially critical infrastructure.
Source: https://www.cnn.com/2023/06/15/politics/us-government-hit-cybeattack/index.html
"id": "pro205050824",
"linkid": "progress-software",
"type": "Breach",
"date": "06/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"