At the end of May 2023, a Zero Day vulnerability was discovered by risk analysing firm Kroll and on June 7th of this year, Clop ransomware gang published on its blog that they have gained access to the servers of MOVEit software via Zellis Payroll software and urged the victims to contact via the blog post, as their email response could go at snail pace as the number of victims related to the incident was large.
Going forward, let us list out the victims who have been impacted by the attack after the hack-ers gained control of Moveit file transfer software worldwide, a business unit of Progress Software.
1. The US Department of Energy,2. Shell company,3. First National Bankers Bank4. Putnam Investments5. Datasite6. Swizz Insurance company ‘OKK’7. Leggett & Platt8. Multinational firm PricewaterhouseCoppers(Pwc)9. Ernst & Young10. Health Services Ireland11. BBC12. British Airways13. Boots Retail14. Medibank15. Rochester Hospital16. GreenShield Canada17. Datasite18. National Student Clearinghouse19. United Healthcare Student Resources20. University System of Georgia21. German brand Heidelberg22. Aer Lingus23. Government of Nova Scatia24. Johns Hopkins University25. Ofcom26. Transport for London (TfL)27. Ernst and Young
NOTE- Microsoft has confirmed the presence of Clop ransomware suspects, linked to Russian intelligence behind the incident and reaffirmed that health organizations and financial institutions could be the next target of the notorious file encrypting malware spreading gang that is into double extortion.
Ad
Naveen Goud is a writer at Cybersecurity Insiders covering topics such as Mergers & Acquisitions, Startups, Cyber Attacks, Cloud Security and Mobile Security
Support the originator by clicking the read the rest link below.
