Collecting Cyber-News from over 60 sources

Tag: moveIT

MOVEit Transfer Faces Increased Threats as Scanning Surges and CVE Flaws Are Targeted

Jun 27, 2025 10:36 AM

Tags: cve, data, exploit, flaw, government, intelligence, moveIT, threat

Threat intelligence firm GreyNoise is warning of a “notable surge” in scanning activity targeting Progress MOVEit Transfer systems starting May 27, 2025″, suggesting that attackers may be preparing for another mass exploitation campaign or probing for unpatched systems.MOVEit Transfer is a popular managed file transfer solution used by businesses and government agencies to share sensitive…
Scans Probing for MOVEit Systems May Be Precursor to Attacks

Jun 26, 2025 7:36 PM

Tags: attack, Internet, moveIT, service

Attackers Catalog IP Addresses With Open Ports, Seeking Exploitable Services. Someone – nobody knows who – is performing mass internet scans probing for MOVEit secure file-transfer installations, in what may be the precursor to a mass attack. Attackers regularly scan IP addresses for open ports, seeking exploitable services and devices. First seen on govinfosecurity.com Jump…
MOVEit Transfer Systems Hit by Wave of Attacks Using Over 100 Unique IPs

Jun 26, 2025 8:36 AM

Tags: attack, cyber, cybersecurity, exploit, intelligence, moveIT, software, threat

A dramatic surge in scanning and exploitation activity targeting Progress Software’s MOVEit Transfer file-sharing platform has alarmed cybersecurity researchers and enterprise defenders worldwide. Over the past 90 days, threat intelligence firm GreyNoise has detected 682 unique IP addresses targeting MOVEit Transfer systems, with the most intense activity beginning on May 27, 2025″, when scanning activity…
Critical infrastructure under attack: Flaws becoming weapon of choice

May 23, 2025 9:55 AM

Tags: access, attack, authentication, breach, china, citrix, communications, control, cve, cyber, cybersecurity, dark-web, data-breach, defense, exploit, flaw, fortinet, government, group, hacker, healthcare, ibm, identity, incident, infrastructure, intelligence, iran, kev, login, mfa, monitoring, moveIT, network, ransomware, risk, service, software, strategy, supply-chain, threat, update, vpn, vulnerability, zero-day

Trade in exploit code: IBM’s X-Force found four of the 10 most mentioned common vulnerabilities and exposures (CVEs) on the dark web were linked to sophisticated threat actor groups, including nation-state intelligence agencies.”Exploit codes for these CVEs were openly traded on numerous forums, fueling a growing market for attacks against power grids, health networks, and…
Vor diesen Ransomware-Banden sollten Sie sich hüten

Apr 25, 2025 12:50 PM

Tags: ai, cyber, cyberattack, data, data-breach, exploit, extortion, germany, group, hacker, intelligence, leak, lockbit, malware, moveIT, ransomware, service, software, strategy, threat, tool, usa, vulnerability, zero-day

Ransomware-Attacken werden immer mehr. Höchste Zeit, die Schutzmaßnahmen hochzufahren.In den ersten drei Monaten des laufenden Jahres gab es einen neuen Höchststand bei den weltweit gemeldeten Ransomware-Vorfällen. Laut dem aktuellen Bericht State of Ransomware von Check Point Research (CPR) haben Hacker im ersten Quartal 2025 insgesamt 2.289 Unternehmen erpresst 126 Prozent mehr als im Vorjahreszeitraum (1.011…
11 ruinöse Ransomware-Bedrohungen

Mar 7, 2025 6:53 AM

Tags: ai, apt, cloud, cyberattack, cybercrime, encryption, exploit, extortion, fortinet, healthcare, kritis, leak, linux, lockbit, malware, moveIT, phishing, ransomware, service, social-engineering, supply-chain, usa, vmware, vpn, vulnerability, windows, zero-day

Für Unternehmen ist Ransomware weiterhin eine existenzielle Bedrohung, für Kriminelle ein immer einträglicheres (Service)geschäft.Ransomware bleibt branchenübergreifend auf dem Vormarsch und entwickelt sich beständig weiter vereinzelten behördlichen Erfolgen zum Trotz. Das ist unter anderem auch folgenden Trends zuzuschreiben:Ransomware-as-a-Service (RaaS)-Angebote senken die Zugangsbarrieren.Neue Erpressungstaktiken versprechen noch mehr kriminelle Gewinne.Künstliche Intelligenz (KI) wird bei Cyberkriminellen immer beliebter.Davon abgesehen,…
The dirty dozen: 12 worst ransomware groups active today

Mar 5, 2025 10:34 AM

Tags: access, ai, alphv, apt, attack, backup, breach, cloud, cyber, cybercrime, dark-web, data, detection, email, encryption, endpoint, exploit, extortion, finance, government, group, healthcare, infrastructure, intelligence, korea, law, leak, linux, lockbit, malicious, malware, moveIT, network, north-korea, organized, phishing, ransom, ransomware, russia, service, social-engineering, software, strategy, threat, tool, usa, vmware, vulnerability, windows, zero-day

Black Basta: History: Black Basta appeared on the ransomware scene in early 2022 and is believed to be a spin-off from Conti, a group notorious for attacking major organizations.How it works: Black Basta usually deploys malware through exploitation of known vulnerabilities and social engineering campaigns. “Employees in the target environment are email bombed and then…
Pennsylvania utility says MOVEit breach at vendor exposed some customer data

Feb 15, 2025 5:14 AM

Tags: breach, data, data-breach, moveIT

A Pennsylvania utility company says that basic customer data stolen from one of its vendors in 2023 was recently exposed online, but the incident did not affect its core systems. First seen on therecord.media Jump to article: therecord.media/pennsylvania-utility-says-moveit-vendor-breach-exposed-some-data
Texas utility firm investigating potential leak of customer data tied to 2023 MOVEit breach

Jan 28, 2025 5:36 PM

Tags: breach, cybercrime, data, leak, moveIT

A large Texas energy company confirmed it is investigating reports of stolen customer data that has been published on a cybercriminal forum after it was allegedly taken during a 2023 breach. First seen on therecord.media Jump to article: therecord.media/texas-utility-firm-investigating-potential-data-leak-moveit-breach
American National Insurance Company data likely stolen in MOVEit hack exposed

Jan 27, 2025 9:03 PM

Tags: breach, data, data-breach, insurance, moveIT

First seen on scworld.com Jump to article: www.scworld.com/brief/american-national-insurance-company-data-likely-stolen-in-moveit-hack-exposed
Top 12 ways hackers broke into your systems in 2024

Dec 31, 2024 8:27 AM

Tags: access, adobe, ai, api, apt, attack, authentication, backdoor, breach, business, china, cloud, control, corporate, credentials, cve, cvss, cyber, cybercrime, cybersecurity, data, data-breach, defense, detection, email, endpoint, exploit, finance, flaw, fortinet, government, group, hacker, healthcare, identity, infection, injection, Internet, iran, ivanti, jobs, malicious, malware, mfa, microsoft, mitigation, mobile, moveIT, north-korea, okta, open-source, phishing, pypi, ransomware, rce, remote-code-execution, risk, russia, scam, software, sql, strategy, supply-chain, tactics, theft, tool, unauthorized, update, vpn, vulnerability, zero-day

In 2024, hackers had a field day finding sneaky ways into systems, from convincing phishing scams that played on human curiosity to brutal software flaws that exposed gaps in tech upkeep. It was a year of clever breaches, showing just how wide the gap is between user habits and security practices.”While every year brings new…
Impact of Unpatched Vulnerabilities in 2025

Dec 24, 2024 2:45 PM

Tags: attack, flaw, hacker, moveIT, vulnerability

Vulnerability-based attacks are growing. Undoubtedly, these attacks are hackers’ favorite ways to gain initial access. Such attacks rose by 124% in the third quarter of 2024 compared to 2023. Furthermore, the quick shot of hackers taking advantage of the security flaw (CVE-2024-5806) in Progress MOVEit Transfer amplifies the dreadfulness of unpatched vulnerabilities. Once the vulnerability……
Top 7 zero-day exploitation trends of 2024

Dec 23, 2024 10:42 AM

Tags: access, ai, attack, authentication, backdoor, botnet, breach, bug-bounty, business, china, ciso, cloud, computing, control, corporate, cve, cyberespionage, cybersecurity, data, data-breach, defense, email, endpoint, exploit, firewall, flaw, framework, github, google, government, group, hacker, identity, infrastructure, injection, Internet, ivanti, kev, leak, linux, malicious, malware, ml, monitoring, moveIT, network, north-korea, open-source, password, programming, pypi, ransomware, remote-code-execution, risk, service, software, sql, supply-chain, tool, training, unauthorized, update, vpn, vulnerability, windows, zero-day

Zero-day vulnerabilities saw big growth once again in 2024. With no patch available, zero-day flaws give attackers a significant jump on cybersecurity defense teams, making them a critical weapon for attacking enterprise systems.But while all zero-days are essential for CISOs and their team to be aware of, and for vendors to remedy in a timely…
5 Things To Know On The Cleo Data Theft Attacks

Dec 16, 2024 10:42 PM

Tags: attack, cybercrime, data, exploit, group, moveIT, theft

The cybercriminal group Clop, previously responsible for the widely felt MOVEit data theft attacks of 2023, has reportedly claimed responsibility for the recent attacks exploiting Cleo file transfer tools. First seen on crn.com Jump to article: www.crn.com/news/security/2024/5-things-to-know-on-the-cleo-data-theft-attacks
Clop Ransomware Takes Responsibility for Cleo Mass Exploits

Dec 16, 2024 7:42 PM

Tags: communications, exploit, group, moveIT, ransomware, software

File-Transfer Software Being Exploited by One or More Groups; Vendor Pushes Patches. The ransomware group Clop is claiming credit for the mass exploitation of managed file-transfer software built by Cleo Communications, following on from the similar targeting of MOVEit file-transfer in 2023. Many large organizations rely on the MFT server software to securely transfer files.…
Time of Reckoning Reviewing My 2024 Cybersecurity Predictions

Dec 14, 2024 1:05 AM

Tags: ai, attack, automation, awareness, breach, business, chatgpt, china, compliance, cyber, cyberattack, cybercrime, cybersecurity, data, data-breach, disinformation, election, espionage, exploit, healthcare, incident response, infrastructure, jobs, law, linkedin, malware, monitoring, moveIT, phishing, privacy, ransomware, regulation, risk, russia, service, software, supply-chain, technology, threat, tool, ukraine, update, vulnerability, warfare, zero-day

The brutal reality is that cybersecurity predictions are only as valuable as their accuracy. As 2024 comes to a close, I revisit my forecasts to assess their utility in guiding meaningful decisions. Anyone can make predictions (and far too many do), but actually being correct is another matter altogether. It is commonplace for security companies…
MOVEit Repackaged and Recycled

Dec 12, 2024 9:05 PM

Tags: breach, corporate, data, hacker, leak, moveIT

The largest repackage and re-post of an old leak In November 2024, a hacker known as “Nam3L3ss” allegedly released previously undisclosed data from the MOVEit breach in May 2023. This leak consisted of millions of records, including sensitive employee and big brand corporate information, significantly escalating the breach’s impact. Digging into this story reveals that……
Attackers exploit zero-day RCE flaw in Cleo managed file transfer

Dec 11, 2024 1:37 AM

Tags: advisory, attack, cve, edr, exploit, firewall, flaw, group, Internet, malicious, mitigation, moveIT, powershell, ransomware, rce, remote-code-execution, software, tool, update, vulnerability, vulnerability-management, windows, zero-day

Security researchers have warned about in-the-wild attacks that exploit a remote code execution vulnerability in managed file transfer (MFT) solutions developed by enterprise software vendor Cleo Communications.The impacted products include the latest versions of Cleo LexiCom, Cleo VLTrader and Cleo Harmony, with experts advising to temporarily disconnect these systems from the internet until a patch…
Additional MOVEit hack data from major firms exposed

Dec 4, 2024 9:48 PM

Tags: data, data-breach, moveIT

First seen on scworld.com Jump to article: www.scworld.com/brief/additional-moveit-hack-data-from-major-firms-exposed
Data Vigilante Leaks 772K Employee Records from Top Firms and 12.3M-Row Database

Dec 3, 2024 6:48 PM

Tags: data, data-breach, leak, moveIT, vulnerability

A massive data leak linked to the MOVEit vulnerability has exposed millions of employee records from major companies. Learn about the impact of this leak, the role of the “data vigilante” Nam3L3ss. First seen on hackread.com Jump to article: hackread.com/data-vigilante-leaks-772k-employee-record-database/
Data on 760K workers from Xerox, Nokia, BofA, Morgan Stanley and more dumped online

Dec 3, 2024 5:48 AM

Tags: data, moveIT

Yet another result of the MOVEit mess First seen on theregister.com Jump to article: www.theregister.com/2024/12/03/760k_xerox_nokia_bofa_morgan/
Cl0p Ups the Ante with Massive MOVEit Transfer Supply-Chain Exploit

Dec 1, 2024 1:19 AM

Tags: exploit, moveIT, supply-chain

First seen on resecurity.com Jump to article: www.resecurity.com/blog/article/cl0p-ups-the-ante-with-massive-moveit-transfer-supply-chain-exploit
Amazon bestätigt Datenschutzverletzung – 25 Unternehmen von Moveit-Sicherheitslücke betroffen

Nov 18, 2024 7:53 AM

Tags: bug, moveIT

First seen on security-insider.de Jump to article: www.security-insider.de/datenleck-sicherheitsluecke-moveit-transfer-2023-a-f998d79bb61bb01b17d98601a41faa7f/
Millions of records from MOVEit hack released on dark web

Nov 13, 2024 9:53 PM

Tags: dark-web, moveIT

First seen on scworld.com Jump to article: www.scworld.com/news/millions-of-records-from-moveit-hack-released-on-dark-web
Amazon MOVEit Leaker Claims to Be Ethical Hacker

Nov 13, 2024 11:54 AM

Tags: breach, data, hacker, malicious, moveIT

An individual who posted data allegedly stolen via MOVEit from Amazon and other big-name firms claims not to be malicious First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/amazon-moveit-leaker-claims/
Amazon Employee Data Compromised in MOVEit Breach

Nov 13, 2024 7:53 AM

Tags: breach, data, leak, moveIT, supply-chain

The data leak was not actually due to a breach in Amazon’s systems but rather that of a third-party vendor; the supply chain incident affected several other clients as well. First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/amazon-employee-data-compromised-moveit-breach
Data Vigilante Leaks 8 Million Employee Records from Amazon, HP and Others

Nov 12, 2024 9:04 PM

Tags: data, leak, moveIT, vulnerability

Aftermath of MOVEit vulnerability: Data vigilante ‘Nam3L3ss’ leaks nearly 8 million employee records from industry giants like Amazon,… First seen on hackread.com Jump to article: hackread.com/data-vigilante-employee-records-amazon-hp-others/
Delta, Amazon confirm vendor breach as dark web posts revive MOVEit leak concerns

Nov 12, 2024 8:04 PM

Tags: breach, dark-web, leak, moveIT

First seen on therecord.media Jump to article: therecord.media/delta-amazon-vendor-breach-confirmed
Amazon confirms employee data exposed in leak linked to MOVEit vulnerability

Nov 12, 2024 3:04 PM

Tags: data, data-breach, leak, moveIT, vulnerability

Over 5 million records from 25 organizations posted to black hat forum First seen on theregister.com Jump to article: www.theregister.com/2024/11/12/amazon_moveit_breach/
Amazon Employee Data Leaked by Hacker

Nov 12, 2024 1:04 PM

Tags: data, data-breach, hacker, moveIT

Amazon has confirmed that some employee data was compromised as a result of a MOVEit hack last year. The post Amazon Employee Data Leaked by Hacker appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/amazon-employee-data-leaked-by-hacker/