MOVEit's Ransomware Attack Highlights the



            State of Cybersecurity


            By Ben Smith, Field Chief Technology Officer, NetWitness


            Vulnerability is a four-letter word in the world of cybersecurity, as one leading business application vendor
            learned the hard way in May. The company’s managed file transfer (MFT) software, MOVEit, experienced
            a sizable attack orchestrated by the Russian ransomware group, CL0P.

            According  to the victimized  company, the gap in security had the potential  to allow unauthorized  users
            access and privileges to the software, and the supply chain attack against MOVEit impacted many of its
            own downstream customers, including other companies in the payroll services and identity theft verticals,
            as  well  as  several  government  agencies.  In  recent  years,  supply  chain  attacks  have  become  more
            prevalent as threat actors have evolved to extract even more value from personal data, especially when
            80% of companies disrupted by ransomware wound up paying the ransom. This is a profitable exercise,
            because after all, cybercrime is a business and has its own business models.






            Cyber Defense eMagazine – August 2023 Edition                                                                                                                                                                                                               96
            Copyright © 2023, Cyber Defense Magazine. All rights reserved worldwide.