Progress Software

Progress Software

Russian cybercriminals exploited a software vulnerability within MOVEit, a product of Progress Software, affecting multiple US federal agencies and hundreds of companies. The Department of Energy and Oak Ridge Associated Universities have confirmed breaches, leading to an urgent response from CISA. No federal agency has faced any significant disruptions, though personal and financial information may have been compromised. Progress Software has identified a second vulnerability and is working on fixes. Victims span various sectors including universities, healthcare systems, and the government. Ransomware group CLOP is associated with the attack, though no federal ransoms have been requested.

Source: https://www.cnn.com/2023/06/15/politics/us-government-hit-cybeattack/index.html

TPRM report: https://scoringcyber.rankiteo.com/company/progress-software

"id": "pro313051324",
"linkid": "progress-software",
"type": "Breach",
"date": "03/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Government',
                        'location': 'USA',
                        'name': 'Department of Energy',
                        'type': 'Government Agency'},
                       {'industry': 'Education',
                        'location': 'USA',
                        'name': 'Oak Ridge Associated Universities',
                        'type': 'University'},
                       {'industry': 'Education',
                        'location': 'USA',
                        'name': 'Various Universities',
                        'type': 'University'},
                       {'industry': 'Healthcare',
                        'location': 'USA',
                        'name': 'Healthcare Systems',
                        'type': 'Healthcare'}],
 'attack_vector': 'Software Vulnerability',
 'data_breach': {'type_of_data_compromised': ['Personal Information',
                                              'Financial Information']},
 'description': 'Russian cybercriminals exploited a software vulnerability '
                'within MOVEit, a product of Progress Software, affecting '
                'multiple US federal agencies and hundreds of companies. The '
                'Department of Energy and Oak Ridge Associated Universities '
                'have confirmed breaches, leading to an urgent response from '
                'CISA. No federal agency has faced any significant '
                'disruptions, though personal and financial information may '
                'have been compromised. Progress Software has identified a '
                'second vulnerability and is working on fixes. Victims span '
                'various sectors including universities, healthcare systems, '
                'and the government. Ransomware group CLOP is associated with '
                'the attack, though no federal ransoms have been requested.',
 'impact': {'data_compromised': ['Personal Information',
                                 'Financial Information']},
 'motivation': 'Data Theft, Financial Gain',
 'ransomware': {'ransomware_strain': 'CLOP'},
 'threat_actor': 'Russian Cybercriminals',
 'title': 'Russian Cybercriminals Exploit MOVEit Vulnerability',
 'type': 'Cyber Attack',
 'vulnerability_exploited': 'MOVEit Software Vulnerability'}
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.