After taking advantage of a security vulnerability on Moveit file transfer software produced by Progress Software, a hacker has reportedly taken control of servers on almost all US Federal Agencies. This was confirmed by Cybersecurity and Infrastructure Security Agency (CISA) which also stated that agency heads are being urged to take proper security measures before more such effects are discovered.
Shell, the US Department of Energy, Johns Hopkins University and its health subsidiary and the University System of Georgia have been hit by a cyber-attack..
Initially, Russian hackers gang Clop Ransomware was suspected to be behind the incident. But now the suspicion finger is pointing towards LockBit as a third-party investigation taken up on request of British Airways (another victim of Moveit software cyber-attack) has found the said ransomware spreading gang behind the incident.
It is unclear whether data was stolen from all victims and news is yet to be out on the ransom note.
Reports of a Twitter handle where the hacker posted data as proof have surfaced. They warned that victims who don’t respond to the ransom demands will face serious consequences like data erasure..
Meanwhile, the white house seems to have sniffed out the situation and the Biden admin has ordered for a clinical probe into the incident. After the JBS Meat Ransomware attack and the digital assault on Colonial Pipeline operational software, the latest incident on Moveit software is the next to be tagged as critical by CISA.