Cl0p Ransomware Actors Exploit Zero-Day Vulnerability in MOVEit Transfer Software (CVE-2023-34362)
Dark Lab on Jun 08 2023
Share:
On 5 June 2023, Progress disclosed a critical zero-day vulnerability (CVE-2023-34362) in their MOVEit Transfer technology. On 6 June 2023, the Ransomware-as-Service (RaaS) operator Cl0p claimed responsibility for the attacks on their data leak site. This is the group's second major exploitation of a zero-day in the last three months, after their mass exploitation of the zero-day vulnerability in GoAnyWhere's Managed File Transfer (MFT) in February 2023.
It is recommended that anyone leveraging MOVEit applications patch the vulnerable assets immediately and perform a search of historical logs for potential indicators of intrusion.
https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-158a
https://community.progress.com/s/article/MOVEit-Transfer-Critical-Vulnerability-31May2023
It is recommended that anyone leveraging MOVEit applications patch the vulnerable assets immediately and perform a search of historical logs for potential indicators of intrusion.
https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-158a
https://community.progress.com/s/article/MOVEit-Transfer-Critical-Vulnerability-31May2023