U.S. Government Agencies Hit by Cyberattack Targeting MOVEit Transfer Software
Multiple U.S. federal agencies were compromised in a cyberattack exploiting a vulnerability in MOVEit Transfer, a widely used file transfer application, according to Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly. The breach, confirmed on Thursday, involved the theft of government data, as reported by Mandiant, Google Cloud’s cyber intelligence unit.
CISA previously identified a security gap in the software, which officials believe was leveraged in the attack. While the agency declined to disclose the number of affected agencies or the perpetrators, a senior CISA official described the incident as "small" in scope, contrasting it with the 2020 SolarWinds hack, which had far-reaching consequences.
Federal authorities had earlier issued a joint advisory warning that MOVEit Transfer was vulnerable to ransomware attacks, where data is either encrypted or exfiltrated for extortion. The FBI and CISA emphasized proactive information-sharing to help organizations mitigate such threats.
MOVEit’s developer acknowledged the breach, stating it is applying security patches and collaborating with law enforcement to address the exploit. The attack underscores ongoing risks posed by cybercriminals targeting widely deployed software vulnerabilities.
Source: https://abcnews.com/Politics/us-government-agencies-hit-cyberattack-official/story?id=100121273
US Government Agencies cybersecurity rating report: https://www.rankiteo.com/company/us-government-agencies
"id": "US-1773124070",
"linkid": "us-government-agencies",
"type": "Cyber Attack",
"date": "6/2025",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of geographical region"{'affected_entities': [{'industry': 'Public Sector',
'location': 'United States',
'name': 'U.S. federal agencies',
'type': 'Government'}],
'attack_vector': 'Exploiting software vulnerability',
'data_breach': {'data_exfiltration': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Government data'},
'description': 'Multiple U.S. federal agencies were compromised in a '
'cyberattack exploiting a vulnerability in MOVEit Transfer, a '
'widely used file transfer application. The breach involved '
'the theft of government data, as confirmed by CISA and '
'Mandiant. The attack exploited a known security gap in the '
'software.',
'impact': {'data_compromised': 'Government data',
'systems_affected': 'MOVEit Transfer software'},
'investigation_status': 'Ongoing',
'motivation': 'Data exfiltration for extortion',
'post_incident_analysis': {'corrective_actions': 'Security patches applied',
'root_causes': 'Exploited vulnerability in MOVEit '
'Transfer software'},
'ransomware': {'data_exfiltration': 'Yes'},
'references': [{'source': 'Cybersecurity and Infrastructure Security Agency '
'(CISA)'},
{'source': 'Mandiant (Google Cloud’s cyber intelligence unit)'},
{'source': 'FBI and CISA joint advisory'}],
'regulatory_compliance': {'regulatory_notifications': 'Joint advisory by FBI '
'and CISA'},
'response': {'containment_measures': 'Applying security patches',
'law_enforcement_notified': 'Yes (FBI and CISA collaboration)',
'third_party_assistance': 'Mandiant (Google Cloud’s cyber '
'intelligence unit)'},
'title': 'U.S. Government Agencies Hit by Cyberattack Targeting MOVEit '
'Transfer Software',
'type': 'Data Breach',
'vulnerability_exploited': 'Security gap in MOVEit Transfer'}