A critical flaw in Progress Software’s MOVEit Transfer managed file transfer application has come under widespread exploitation.
The company said it could allow an unauthenticated attacker to gain unauthorized access to the database.
According to Huntress and Rapid7, roughly 2,500 instances of MOVEIT Transfer were exposed to the public internet as of May 31, 2023, a majority of them located in the U.S. Threat intelligence firm GreyNoise said it observed scanning activity for the login page of MOveit Transfer located at /human.aspx as early as March 3, 20 23, adding five different IP addresses have been detected attempting to discover the location of MOVeeit installations.
UPCOMING WEBINAR Mastering API Security: Understanding Your True Attack Surface Discover the untapped vulnerabilities in your API ecosystem and take proactive steps towards ironclad security.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply