Skip to content

List of victimized companies of MOVEit Cyber Attack

In June 2023, Clop ransomware gang announced that they had gained access to the servers of MOVEit software via Zellis Payroll software. The hackers had discovered a Zero Day vulnerability, which was identified by risk analysing firm Kroll at the end of May 2023. The victims of the attack are a long list of companies, including multinational firms such as PricewaterhouseCoppers and Ernst & Young, as well as government agencies like the US Department of Energy and the BBC. The presence of Clop ransomware suspects linked to Russian intelligence has been confirmed by Microsoft, who have also warned that health organizations and financial institutions could be the next targets of the file encrypting malware spreading gang.

The MOVEit software is a business unit of Progress Software, which provides secure file transfer and collaboration solutions to businesses. The Clop ransomware gang was able to gain control of the software globally, which enabled them to access the servers of the companies using it. The victims of the attack have been urged to contact the hackers via the blog post, as their email response could be slow due to the large number of victims related to the incident.

The long list of victims includes companies from different sectors such as healthcare, finance, aviation, and education. The attack has affected companies from different parts of the world, including the US, Germany, Canada, and the UK. The hackers demanded a ransom in exchange for the decryption of the encrypted files. The amount of the ransom is not known, but the Clop ransomware gang is notorious for its double extortion tactics, which means that they not only encrypt the victim’s files but also threaten to leak them if the ransom is not paid.

The presence of Clop ransomware suspects linked to Russian intelligence has been confirmed by Microsoft, raising concerns about the involvement of state actors in cyber-attacks. The warning from Microsoft about the next targets of the ransomware gang is a reminder of the importance of cybersecurity for businesses, especially those in the healthcare and finance sectors. The attack highlights the need for businesses to adopt a proactive approach to cybersecurity and to invest in the latest security solutions to protect their assets.

Key points:

– Clop ransomware gang gained access to the servers of MOVEit software via a Zero Day vulnerability.
– The victims of the attack include multinational firms, government agencies, and companies from different sectors.
– The hackers demanded a ransom in exchange for the decryption of the encrypted files.
– Microsoft has confirmed the presence of Clop ransomware suspects linked to Russian intelligence and warned about the next targets of the ransomware gang.
– The attack highlights the importance of cybersecurity for businesses and the need to adopt a proactive approach to protect their assets.

Leave a Reply

Your email address will not be published. Required fields are marked *