MOVEit: Attempted exploitation of critical vulnerability

Progress disclosed the authentication bypass vulnerability Tuesday and ‘very shortly after’ began seeing attempted exploits, according to Shadowserver researchers.

clock • 2 min read
MOVEit: Critical vulnerability under active exploitation
Image:

MOVEit: Critical vulnerability under active exploitation

Progress disclosed a critical new vulnerability in MOVEit Transfer Tuesday and “very shortly after” began seeing attempted exploits by hackers, according to researchers at Shadowserver.

The disclosure comes just over a year after widespread attacks targeted a prior vulnerability in Progress' MOVEit file transfer tool, ultimately compromising thousands of organisations in what turn...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
Progress Software fixes critical bugs in WS_FTP Server

Threats and Risks

Bugs are being actively exploited, say researchers

clock 03 October 2023 • 2 min read
Clop using clearweb to publish MOVEit data

Hacking

Data is freely available for all to view

clock 24 July 2023 • 3 min read
Criminals breach Dublin airport staff data

Hacking

Airport blames Russia's Cl0p gang

clock 04 July 2023 • 3 min read

Sign up to our newsletter

The best news, stories, features and photos from the day in one perfectly formed email.

More on Threats and Risks

SolarWinds patches eight critical flaws in Access Rights Manager software

SolarWinds patches eight critical flaws in Access Rights Manager software

Disclosure raises fresh security concerns

clock 21 July 2024 • 3 min read
Cisco patches critical flaw in Secure Email Gateway appliances

Cisco patches critical flaw in Secure Email Gateway appliances

Patch devices immediately

clock 19 July 2024 • 3 min read
Nearly 7% of all internet traffic is malicious, says Cloudflare

Nearly 7% of all internet traffic is malicious, says Cloudflare

Volume and scale of DDoS attacks ‘vast’

Penny Horwood
clock 17 July 2024 • 2 min read