Lucene search
K

45 matches found

HackRead
HackRead
added 2025/11/11 7:47 p.m.6 views

Cl0p Ransomware Lists NHS UK as Victim, Days After Washington Post Breach

Cl0p ransomware lists NHS UK as a victim days after The Washington Post confirms a major Oracle E-Business breach linked to CVE-2025-61882...

9.8CVSS7.8AI score0.99722EPSS
Exploits14
Imperva Blog
Imperva Blog
added 2025/01/21 9:1 p.m.19 views

Imperva Protects Against the Exploited CVEs in the Cleo Data Theft Attacks

The Clop ransomware group has once again demonstrated its ability to exploit vulnerabilities to compromise sensitive systems. As Cleo—a managed file transfer provider for businesses—grapples with the aftermath of Clop’s targeted attack on their systems, the spotlight turns to CVE-2024-50623 and...

9.8CVSS9.1AI score0.99999EPSS
Exploits35
Malwarebytes
Malwarebytes
added 2024/01/25 1:32 p.m.38 views

Patch now! Fortra GoAnywhere MFT vulnerability exploit available

On January 22, 2024, software company Fortra warned customers about a new authentication bypass vulnerability impacting GoAnywhere MFT Managed File Transfer that allows an attacker to create a new admin user. Fortra GoAnywhere MFT is a file transfer solution that organizations use to exchange the...

7.5CVSS7.4AI score0.95086EPSS
Exploits8
hivepro
hivepro
added 2023/11/14 8:22 a.m.45 views

Lace Tempest Exploits Zero-Day in a Strategic Strike on SysAid

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Lace Tempest has been implicated in exploiting a zero-day vulnerability, identified as CVE-2023-47246. This exploitation allows for the execution of code within SysAid on-premise software, leading...

7.5CVSS7.5AI score0.98851EPSS
Exploits3
hivepro
hivepro
added 2023/10/14 7:43 a.m.68 views

Attacks, Vulnerabilities and Actors 2 October to 8 October 2023

For a detailed threat digest, download the pdf file here Summary HiveForce Labs has recently made several significant discoveries related to cybersecurity threats. Over the past week, we identified a total of seven executed attacks, zero instances of adversary activity, and eight zero-day...

7.5CVSS6.9AI score0.99156EPSS
Exploits39
hivepro
hivepro
added 2023/10/09 1:46 p.m.6 views

MOVEit Vulnerabilities Expose Organizations to Cyberattacks

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Critical SQL Injection vulnerabilities in Progress Softwares MOVEit Transfer product, exploited by Clop ransomware gang since May 2023, led to unauthorized access and data breaches, affecting...

7.9AI score
Exploits0
Talos Blog
Talos Blog
added 2023/08/10 6:0 p.m.20 views

Reflecting on supply chain attacks halfway through 2023

Welcome to this weeks edition of the Threat Source newsletter. Between the Talos Takes episode last week and helping my colleague Hazel with the Half-Year in Review, I realized how much I had already forgotten about 2023 already. Its been a whirlwind, personally and professionally, and I think it...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2023/07/07 2:1 p.m.85 views

Another Critical Unauthenticated SQLi Flaw Discovered in MOVEit Transfer Software

Progress Software has announced the discovery and patching of a critical SQL injection vulnerability in MOVEit Transfer, popular software used for secure file transfer. In addition, Progress Software has patched two other high-severity vulnerabilities. The identified SQL injection vulnerability,...

9.8CVSS8.5AI score0.99934EPSS
Exploits15
Talos Blog
Talos Blog
added 2023/06/16 6:17 p.m.42 views

Active exploitation of the MOVEit Transfer vulnerability — CVE-2023-34362 — by Clop ransomware group

Cisco Talos is monitoring recent reports of exploitation attempts against CVE-2023-34362, a SQL injection zero-day vulnerability in the MOVEit Transfer managed file transfer MFT solution that has been actively targeted since late May 2023. Successful exploitation could lead to remote code executi...

7.5CVSS10.9AI score0.99934EPSS
Exploits15
The Hacker News
The Hacker News
added 2023/06/16 3:35 a.m.119 views

Third Flaw Uncovered in MOVEit Transfer App Amidst Cl0p Ransomware Mass Attack

Progress Software on Thursday disclosed a third vulnerability impacting its MOVEit Transfer application, as the Cl0p cybercrime gang deployed extortion tactics against affected companies. The new flaw, which is being tracked as CVE-2023-35708, also concerns an SQL injection vulnerability that...

9.8CVSS9.9AI score0.99934EPSS
Exploits15
hivepro
hivepro
added 2023/06/13 6:58 a.m.53 views

Actors, Threats and Vulnerabilities 5 June to 11 June 2023

For a detailed threat digest, download the pdf file here Summary HiveForce Labs recently made several significant discoveries related to cybersecurity threats. Over the past week, the fact that there were a total of seven attacks executed, taking advantage of five different vulnerabilities in...

9.3CVSS6.9AI score0.99934EPSS
Exploits77
The Hacker News
The Hacker News
added 2023/06/10 8:50 a.m.210 views

New Critical MOVEit Transfer SQL Injection Vulnerabilities Discovered - Patch Now!

Progress Software, the company behind the MOVEit Transfer application, has released patches to address brand new SQL injection vulnerabilities affecting the file transfer solution that could enable the theft of sensitive information. "Multiple SQL injection vulnerabilities have been identified in...

9.8CVSS10.2AI score0.99934EPSS
Exploits15
The Hacker News
The Hacker News
added 2023/06/08 1:56 p.m.62 views

Clop Ransomware Gang Likely Aware of MOVEit Transfer Vulnerability Since 2021

The U.S. Cybersecurity and Infrastructure Security Agency CISA and Federal Bureau of Investigation FBI have published a joint advisory regarding the active exploitation of a recently disclosed critical flaw in Progress Software's MOVEit Transfer application to drop ransomware. "The Cl0p Ransomwar...

10.5AI score0.99934EPSS
Exploits15
The Hacker News
The Hacker News
added 2023/06/08 1:56 p.m.8 views

Clop Ransomware Gang Likely Aware of MOVEit Transfer Vulnerability Since 2021

The U.S. Cybersecurity and Infrastructure Security Agency CISA and Federal Bureau of Investigation FBI have published a joint advisory regarding the active exploitation of a recently disclosed critical flaw in Progress Software's MOVEit Transfer application to drop ransomware. "The Cl0p Ransomwar...

9.8CVSS8.8AI score0.99934EPSS
Exploits15
The Hacker News
The Hacker News
added 2023/04/27 8:20 a.m.4 views

Microsoft Confirms PaperCut Servers Used to Deliver LockBit and Cl0p Ransomware

Microsoft has confirmed that the active exploitation of PaperCut servers is linked to attacks that are designed to deliver Cl0p and LockBit ransomware families. The tech giant's threat intelligence team is attributing a subset of the intrusions to a financially motivated actor it tracks under the...

8.8CVSS8.2AI score0.99999EPSS
Exploits11
Malwarebytes
Malwarebytes
added 2023/03/17 4:30 p.m.68 views

Rubrik is latest victim of the Clop ransomware zero-day campaign

Rubrik, a cybersecurity company specializing in cloud data management, has revealed that some of its systems were infiltrated by the Clop ransomware group. Rubrik is one of many companies attacked by Clop via an infamous zero-day vulnerability in the GoAnywhere file transfer software. The attack...

7.5AI score0.99999EPSS
Exploits12
Malwarebytes
Malwarebytes
added 2023/03/14 4:0 a.m.50 views

Clop ransomware is victimizing GoAnywhere MFT customers

According to information gathered by BleepingComputer, the Clop ransomware group has claimed responsibility for the ransomware attacks that are tied to a vulnerability in the Fortra GoAnywhere MFT secure file-sharing solution. As we reported on February 8, Fortra released an emergency patch 7.1.2...

7.9AI score0.99999EPSS
Exploits12
The Hacker News
The Hacker News
added 2023/02/22 5:38 a.m.179 views

U.S. Cybersecurity Agency CISA Adds Three New Vulnerabilities in KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Tuesday added three security flaws to its Known Exploited Vulnerabilities KEV catalog, based on evidence of active exploitation. The list of shortcomings is as follows - CVE-2022-47986 CVSS score: 9.8 - IBM Aspera Faspex Code...

9.8CVSS1.9AI score0.99999EPSS
Exploits19
Malwarebytes
Malwarebytes
added 2023/02/20 2:0 a.m.105 views

GoAnywhere zero-day opened door to Clop ransomware

A semi-active ransomware group has claimed it is behind a string of attacks which have taken advantage of a zero-day vulnerability in GoAywhere MFT. The Russian-linked Clop ransomware group says it was able to remotely attack private systems using exposed GoAnywhere MFT administration consoles...

0.3AI score0.99999EPSS
Exploits12
hivepro
hivepro
added 2023/02/13 11:34 a.m.49 views

Clop Ransomware Group Claims Responsibility for GoAnywhere MFT Attacks

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary The Clop ransomware group claims responsibility for recent cyber attacks that exploited a zero-day vulnerability in the GoAnywhere MFT secure file transfer tool. The vulnerability, now known as...

2.2AI score0.99999EPSS
Exploits12
Rows per page
Query Builder