MOVEit software Vulnerability exploit
VULNERABLE SOFTWARE MOVEIT EXPLOITED BY HACKERS
Hackers take advantage of a software flaw also known as CVE-2023-34362 in MOVEit transfer software
, a widely used software to transfer files safely via the internet . CVE-2023-34362 is as a zero day vulnerability , in simple terms a software flaw that is only known to the attackers ,the vendors have no knowledge about its presence hence no effort has been made to fix it .The vulnerability is further explained to be a structured query language (SQL) injection which permits unauthenticated access to the database .
, a widely used software to transfer files safely via the internet . CVE-2023-34362 is as a zero day vulnerability , in simple terms a software flaw that is only known to the attackers ,the vendors have no knowledge about its presence hence no effort has been made to fix it .The vulnerability is further explained to be a structured query language (SQL) injection which permits unauthenticated access to the database .
With this ,the hackers managed to gain access to the database of MOVEit software and stole personal information of the users .Though the extent of damage has not been stated yet but numerous business , schools even government agencies in the United States have been have been a victim to the attack .The picture below shows the victims of the attack
A Russian hacking group by the name CLOP are said to be behind the massive attack.
This clearly show how vulnerable systems we put much trust to store our personal information are out there . A single vulnerability can cause much damage to personal life take example of such an attack and even others which had taken place earlier and the harm they to the individuals who were affected .
To avoid such attacks always keep your systems up to date .This is so far the only way to protect against zero days.
Comments
Post a Comment