CIBERCRIME
Vaga de ataques de ransomware
June 19, 2023 -
Ciberataques globais pelo grupo de ransomware russo Clop exploram
falhas de segurança no MOVEit Transfer – um produto popular de
transferência de ficheiros – visando empresas, universidades e organismos governamentais.
First observed in 2019, Clop’s latest hack discovered a way to infiltrate MOVEit Transfer -- developed by U.S. company Progress Software -- and extract data from the organisations using it.
While the scope of the attack is not yet fully understood, officials at the U.S. Cybersecurity and Infrastructure Security Agency (CISA) said Thursday (June 15) that “several federal agencies… have experienced intrusions.”
“Nobody knows the full extent of this, and that’s the way these cyber compromises work,” Robert Cattanach, a partner specialising in cybersecurity at Dorsey & Whitney and a former trial lawyer for the Department of Justice, told CNN. “Once you’re compromised, there begins an arduous process of ‘how far in did they get in?’ and ‘what did they take?’ That’s typically weeks and sometimes months.”
Clop previously claimed credit for a hack that compromised the BBC and British Airways employee data.
Clop said it has “information on hundreds of companies,” and has listed alleged victims from the hack on their extortion site on the dark web.
According to ransomware attacks collated by Comparitech researchers, last year saw 795 attacks that impacted 115.9 million records. The average ransom demand was $7.2 million.