Progress Software

Russian cybercriminals exploited a software vulnerability within MOVEit, a product of Progress Software, affecting multiple US federal agencies and hundreds of companies. The Department of Energy and Oak Ridge Associated Universities have confirmed breaches, leading to an urgent response from CISA. No federal agency has faced any significant disruptions, though personal and financial information may have been compromised. Progress Software has identified a second vulnerability and is working on fixes. Victims span various sectors including universities, healthcare systems, and the government. Ransomware group CLOP is associated with the attack, though no federal ransoms have been requested.

Source: https://www.cnn.com/2023/06/15/politics/us-government-hit-cybeattack/index.html

"id": "pro313051324",
"linkid": "progress-software",
"type": "Breach",
"date": "03/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"