Latest MOVEit news

BORN Ontario child registry data breach affects 3.4 million people

The Better Outcomes Registry & Network (BORN), a healthcare organization funded by the government of Ontario, has announced that it is among the victims of Clop ransomware's MOVEit hacking spree.
- Bill Toulas
- September 25, 2023
- 01:31 PM
- 0
National Student Clearinghouse data breach impacts 890 schools

U.S. educational nonprofit National Student Clearinghouse has disclosed a data breach affecting 890 schools using its services across the United States.
- Sergiu Gatlan
- September 23, 2023
- 10:04 AM
- 0
Data breach at French govt agency exposes info of 10 million people

Pôle emploi, France's governmental unemployment registration and financial aid agency, is informing of a data breach that exposed data belonging to 10 million individuals.
- Bill Toulas
- August 25, 2023
- 01:01 PM
- 0
Colorado warns 4 million of data stolen in IBM MOVEit breach

The Colorado Department of Health Care Policy & Financing (HCPF) is alerting more than four million individuals of a data breach that impacted their personal and health information.
- Bill Toulas
- August 14, 2023
- 08:42 AM
- 0
Clop ransomware now uses torrents to leak data and evade takedowns

The Clop ransomware gang has once again altered extortion tactics and is now using torrents to leak data stolen in MOVEit attacks.
- Lawrence Abrams
- August 05, 2023
- 11:16 AM
- 1
The Week in Ransomware - August 4th 2023 - Targeting VMware ESXi

Ransomware gangs continue to prioritize targeting VMware ESXi servers, with almost every active ransomware gang creating custom Linux encryptors for this purpose.
- Lawrence Abrams
- August 04, 2023
- 07:12 PM
- 1
US govt contractor Serco discloses data breach after MoveIT attacks

Serco Inc, the Americas division of multinational outsourcing company Serco Group, has disclosed a data breach after attackers stole the personal information of over 10,000 individuals from a third-party vendor's MoveIT managed file transfer (MFT) server.
- Sergiu Gatlan
- August 03, 2023
- 12:39 PM
- 0
8 million people hit by data breach at US govt contractor Maximus

U.S. government services contractor Maximus has disclosed a data breach warning that hackers stole the personal data of 8 to 11 million people during the recent MOVEit Transfer data-theft attacks.
- Bill Toulas
- July 27, 2023
- 10:15 AM
- 0
Clop gang to earn over $75 million from MOVEit extortion attacks

The Clop ransomware gang is expected to earn between $75-100 million from extorting victims of their massive MOVEit data theft campaign.
- Lawrence Abrams
- July 21, 2023
- 12:34 PM
- 3
Estée Lauder beauty giant breached by two ransomware gangs

Two ransomware actors, ALPHV/BlackCat and Clop, have listed beauty company Estée Lauder on their data leak sites as a victim of separate attacks.
- Ionut Ilascu
- July 19, 2023
- 07:51 PM
- 0
Colorado State University says data breach impacts students, staff

Colorado State University (CSU) has confirmed that the Clop ransomware operation stole sensitive personal information of current and former students and employees during the recent MOVEit Transfer data-theft attacks.
- Bill Toulas
- July 14, 2023
- 10:23 AM
- 0
Shutterfly says Clop ransomware attack did not impact customer data

Shutterfly, an online retail and photography manufacturing platform, is among the latest victims hit by Clop ransomware. Over the last few months, Clop ransomware gang has been exploiting a vulnerability in the MOVEit File Transfer utility to breach hundreds of companies to steal their data and attempt extortion against them.
- Ax Sharma
- July 14, 2023
- 04:09 AM
- 0
Deutsche Bank confirms provider breach exposed customer data

Deutsche Bank AG has confirmed to BleepingComputer that a data breach on one of its service providers has exposed its customers' data in a likely MOVEit Transfer data-theft attack.
- Bill Toulas
- July 11, 2023
- 11:51 AM
- 0
MOVEit Transfer customers warned to patch new critical flaw

MOVEit Transfer, the software at the center of the recent massive spree of Clop ransomware breaches, has received an update that fixes a critical-severity SQL injection bug and two other less severe vulnerabilities.
- Bill Toulas
- July 07, 2023
- 08:35 AM
- 0
Hackers steal data of 45,000 New York City students in MOVEit breach

The New York City Department of Education (NYC DOE) says hackers stole documents containing the sensitive personal information of up to 45,000 students from its MOVEit Transfer server.
- Sergiu Gatlan
- June 26, 2023
- 12:15 PM
- 0
MOVEIt breach impacts Genworth, CalPERS as data for 3.2 million exposed

PBI Research Services (PBI) has suffered a data breach with three clients disclosing that the data for 4.75 million people was stolen in the recent MOVEit Transfer data-theft attacks.
- Bill Toulas
- June 23, 2023
- 11:06 AM
- 0
US govt offers $10 million bounty for info on Clop ransomware

The U.S. State Department's Rewards for Justice program announced up to a $10 million bounty yesterday for information linking the Clop ransomware attacks to a foreign government.
- Lawrence Abrams
- June 17, 2023
- 04:06 PM
- 2
The Week in Ransomware - June 16th 2023 - Wave of Extortion

The MOVEit Transfer extortion attacks continue to dominate the news cycle, with the Clop ransomware operation now extorting organizations breached in the attacks.
- Lawrence Abrams
- June 16, 2023
- 05:28 PM
- 0
Millions of Oregon, Louisiana state IDs stolen in MOVEit breach

Louisiana and Oregon warn that millions of driver's licenses were exposed in a data breach after a ransomware gang hacked their MOVEit Transfer security file transfer systems to steal stored data.
- Bill Toulas
- June 16, 2023
- 10:28 AM
- 1
MOVEit Transfer customers warned of new flaw as PoC info surfaces

Progress warned MOVEit Transfer customers to restrict all HTTP access to their environments after info on a new SQL injection (SQLi) vulnerability (tracked as CVE-2023-35708) was shared online today.
- Sergiu Gatlan
- June 15, 2023
- 04:58 PM
- 0