Progress Software discloses a third vulnerability in its MOVEit Transfer application.
The Cl0p cybercrime gang uses the vulnerability to extort money from companies using the service.
The company is urging all its customers to disable all HTTP and HTTPS traffic to this service while a patch is prepared to address the weakness.
This announcement comes two days after the disclosure of CVE-2023-34362, a zero-day ransomware that was used by the Clop gang in data theft attacks; and with the publication of the names of 27 companies that were hit by the malware.
UPCOMING WEBINAR Mastering API Security: Understanding Your True Attack Surface Discover the untapped vulnerabilities in your API ecosystem and take proactive steps towards ironclad security.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply