تصاعد هجمات برامج الفدية
June 19, 2023 - الهجمات الإلكترونية العالمية التي تشنها مجموعة برامج الفدية الروسية ”Clop“ تستغل الثغرات الأمنية في التطبيق الشائع لنقل الملفات MOVEit Transfer مستهدفة الشركات والجامعات والوكالات الحكومية.
First observed in 2019, Clop’s latest hack discovered a way to infiltrate MOVEit Transfer -- developed by U.S. company Progress Software -- and extract data from the organisations using it.
While the scope of the attack is not yet fully understood, officials at the U.S. Cybersecurity and Infrastructure Security Agency (CISA) said Thursday (June 15) that “several federal agencies… have experienced intrusions.”
“Nobody knows the full extent of this, and that’s the way these cyber compromises work,” Robert Cattanach, a partner specialising in cybersecurity at Dorsey & Whitney and a former trial lawyer for the Department of Justice, told CNN. “Once you’re compromised, there begins an arduous process of ‘how far in did they get in?’ and ‘what did they take?’ That’s typically weeks and sometimes months.”
Clop previously claimed credit for a hack that compromised the BBC and British Airways employee data.
Clop said it has “information on hundreds of companies,” and has listed alleged victims from the hack on their extortion site on the dark web.
According to ransomware attacks collated by Comparitech researchers, last year saw 795 attacks that impacted 115.9 million records. The average ransom demand was $7.2 million.