cyber Vulnerability

UCLA

Jul 9, 2023 1 min read
UCLA

The five new MOVEit assaults victims revealed on the dark web leak site for the Clop ransomware organization include the industrial behemoths Siemens Energy, Schneider Electric, werum.com, UCLA (http://ucla.edu), Abbie (http://abbvie.com), and Abbie. Worldwide, vital national infrastructures use Industrial Control Systems (ICS) from Siemens Energy and Schneider Electric.

Threat actors claim they were able to compromise 100 different firms utilizing the most recently revealed MOVEit Transfer vulnerability CVE-2023-34362.

The US government offers rewards for information that leads to the arrest, indictment, or location of dangerous actors.

Source: https://securityaffairs.com/147865/data-breach/schneider-electric-siemens-energy-moveit.html

TPRM report: https://scoringcyber.rankiteo.com/company/ucla

"id": "ucl0443723",
"linkid": "ucla",
"type": "Ransomware",
"date": "06/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Energy',
                        'name': 'Siemens Energy',
                        'type': 'Industrial Control Systems Provider'},
                       {'industry': 'Energy Management and Automation',
                        'name': 'Schneider Electric',
                        'type': 'Industrial Control Systems Provider'},
                       {'industry': 'Pharmaceuticals and Biotech',
                        'name': 'Werum',
                        'type': 'Software Company'},
                       {'industry': 'Education',
                        'location': 'Los Angeles, CA',
                        'name': 'UCLA',
                        'type': 'University'},
                       {'industry': 'Pharmaceuticals',
                        'name': 'AbbVie',
                        'type': 'Pharmaceutical Company'}],
 'attack_vector': 'Vulnerability Exploitation',
 'description': 'The Clop ransomware group exploited the MOVEit Transfer '
                'vulnerability CVE-2023-34362 to compromise multiple '
                'organizations, including Siemens Energy, Schneider Electric, '
                'Werum, UCLA, and AbbVie.',
 'motivation': 'Financial Gain',
 'ransomware': {'ransomware_strain': 'Clop'},
 'references': [{'source': 'UCLA', 'url': 'http://ucla.edu'},
                {'source': 'AbbVie', 'url': 'http://abbvie.com'}],
 'threat_actor': 'Clop Ransomware Group',
 'title': 'MOVEit Transfer Vulnerability Exploitation by Clop Ransomware Group',
 'type': 'Data Breach and Ransomware Attack',
 'vulnerability_exploited': 'CVE-2023-34362'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.