Jon Greig · @jgreig
99 followers · 528 posts · Server ioc.exchangeDeloitte confirmed to me that they were affected: "Our analysis determined that our global network use of the vulnerable MOVEit Transfer software is limited. Having conducted our analysis, we have seen no evidence of impact to client data."
"Immediately upon becoming aware of this zero-day vulnerability, Deloitte applied the vendor’s security updates and performed mitigating actions in accordance with the vendor’s guidance."
According to Emsisoft, there are now more than 500 victims.
Jon Greig · @jgreig
94 followers · 522 posts · Server ioc.exchange
The United Kingdom arm of shipping giant DHL said it is investigating a data breach sourced back to its use of the MOVEit software, which has been exploited by a Russia-based ransomware group for nearly two months
Jon Greig · @jgreig
89 followers · 504 posts · Server ioc.exchangeTJ Maxx, Shutterfly and TomTom are the latest companies to confirm #MOVEit breaches
Jon Greig · @jgreig
83 followers · 483 posts · Server ioc.exchangeChoice Hotels – the company that purchased global hotel chain Radisson Hotels – confirmed to The Record that guest records were involved in their #MOVEit data breach
American National Insurance Company also confirmed being impacted
https://therecord.media/radisson-hotels-major-insurance-firms-disclose-moveit-incidents
Jon Greig · @jgreig
80 followers · 473 posts · Server ioc.exchange
Johns Hopkins University has been added to the list of Clop victims after confirming it had been breached through MOVEit to The Record last month
https://therecord.media/several-us-federal-agencies-affected-by-moveit-breach
Jon Greig · @jgreig
71 followers · 421 posts · Server ioc.exchange
The Department of Housing and Urban Development told The Record they were not affected by #Clop attacks on #MOVEit
So far:
USDA + DOE ✅
Labor + Education + Interior + Housing ❌
State + Defense ?
https://therecord.media/third-moveit-vulnerability-raises-alarms
Jon Greig · @jgreig
68 followers · 385 posts · Server ioc.exchangeThere is a new MOVEit vulnerability and the Minnesota Department of Education discovered that #clop stole files related to nearly 100k foster children as well as hundreds of others
https://therecord.media/moveit-announces-new-vulnerability-minnesota-breached
Marc · @marcjacquemin
226 followers · 60 posts · Server digitalcourage.socialIn #UK #Großbritannien haben #Hacker die Gehaltsdaten von über 100.000 Personen geklaut. Betroffen sind #Britishairways, die #BBC, die Drogeriekette Boots sowie die US-Universität Rochester, die irische Airline #AerLingus und die Regierung der kanadische Provinz Nova Scotia.
#ITSec #itsecurity #itsicherheit #moveit #USA #Russland #Clop #datenschutz #datenschutzbehorde
https://www.aero.de/news-45230/Gehaltsdaten-bei-British-Airways-gehackt.html
#datenschutzbehorde #datenschutz #Clop #russland #usa #moveit #itsicherheit #itsecurity #itsec #AerLingus #bbc #britishairways #hacker #großbritannien #uk
dispatch · @dispatch
472 followers · 2723 posts · Server ioc.exchange
CLOP ransomware suspects charged by police in Ukraine https://www.tripwire.com/state-of-security/featured/clop-ransomware-suspects-charged-police-ukraine/ #Ransomware #ransomware #Guestblog #Law&order #Malware #ukraine #Clop
#ransomware #Guestblog #law #malware #ukraine #Clop
dispatch · @dispatch
472 followers · 2723 posts · Server ioc.exchangeUkrainian Police Nab Six Tied to CLOP Ransomware https://krebsonsecurity.com/2021/06/ukrainian-police-nab-six-tied-to-clop-ransomware/ #UniversityofMarylandandtheUniversityofCalifornia #StanfordUniversityMedicalSchool #FileTransferAppliance #Ne'er-Do-WellNews #Ransomware #ransomware #Accellion #DarkSide #Intel471 #JonesDay #Krogers #SingTel #ATT&CK #Qualys #Babuk #MITRE #Clop
#universityofmarylandandtheuniversityofcalifornia #stanforduniversitymedicalschool #filetransferappliance #ne #ransomware #ACCELLION #darkside #Intel471 #jonesday #krogers #singtel #att #Qualys #BABUK #mitre #Clop
dispatch · @dispatch
472 followers · 2723 posts · Server ioc.exchange
A new headache for ransomware-hit companies. Extortionists emailing your customers https://www.tripwire.com/state-of-security/security-data-protection/ransomware-hit-companies-extortionists-emailing-your-customers/ #Ransomware #databreach #ransomware #Guestblog #Dataloss #Malware #Privacy #Clop
#ransomware #databreach #Guestblog #Dataloss #malware #privacy #Clop
dispatch · @dispatch
472 followers · 2723 posts · Server ioc.exchangeRansom Gangs Emailing Victim Customers for Leverage https://krebsonsecurity.com/2021/04/ransom-gangs-emailing-victim-customers-for-leverage/ #BleepingComputer #TheComingStorm #LawrenceAbrams #FabianWosar #Ransomware #ransomware #Emsisoft #Racetrac #rEvil #Clop
#bleepingcomputer #TheComingStorm #LawrenceAbrams #FabianWosar #ransomware #Emsisoft #racetrac #rEvil #Clop
dispatch · @dispatch
472 followers · 2723 posts · Server ioc.exchange
Bank loses customers’ social security numbers after ransomware attack https://hotforsecurity.bitdefender.com/blog/bank-loses-customers-social-security-numbers-after-ransomware-attack-25524.html #Vulnerability #vulnerability #Ransomware #databreach #ransomware #Guestblog #Accellion #Dataloss #Malware #Clop
#vulnerability #ransomware #databreach #Guestblog #ACCELLION #Dataloss #malware #Clop
dispatch · @dispatch
472 followers · 2723 posts · Server ioc.exchange
Dutch university paid $220,000 ransom to hackers after Christmas attack https://www.grahamcluley.com/dutch-university-ransomware/ #MaastrichtUniversity #Ransomware #ransomware #university #Malware #Clop
#MaastrichtUniversity #ransomware #university #malware #Clop
CIRCL - Old account · @circl
117 followers · 607 posts · Server mastodon.opencloud.luI've just written an little howto for unpacking #Clop
https://medium.com/@Sebdraven/unpacking-clop-416b83718e0f …
#Malware #Ransomware