Progress Software

Progress Software, a US-based firm, fell victim to a global cyberattack executed by Russian cybercriminals exploiting a vulnerability in their MOVEit software. This breach has affected several US federal agencies, including the Department of Energy, alongside 'several hundred' companies and organizations within the US. Despite the attackers being known to demand multimillion-dollar ransoms, no demands have been made towards federal agencies thus far. The impact of this hacking spree has extended to major US universities and state governments, with sensitive personal and financial information at risk of theft. The Department of Energy confirmed records from two of its entities had been compromised, with immediate actions taken to mitigate the impact. This widespread hacking campaign, exploiting a newly discovered vulnerability in widely used software, has put significant pressure on federal officials and highlights the continued vulnerability of critical infrastructure and data to cyber threats.

Source: https://www.cnn.com/2023/06/15/politics/us-government-hit-cybeattack/index.html

"id": "pro212050724",
"linkid": "progress-software",
"type": "Breach",
"date": "05/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"