June 17, 2023, 1:48 a.m. |

Anomali Blog www.anomali.com

Background

Multiple vulnerabilities have recently been identified in the managed file transfer (MFT) software MOVEit developed by Ipswitch, Inc. and produced by Progress Software. These include CVE-2023-34362 ^[1], CVE-2023-35036 ^[2] and CVE-2023-35708 ^[3]. These vulnerabilities allow adversaries to gain unauthorized access and escalate privileges in the environment.

MOVEit is a popular tool that is used by thousands of organizations around the world. These include organizations in the public, private, and government sectors. The transfer software can be deployed …

access adversaries anomali cve cve-2023-34362 cve-2023-35036 cve-2023-35708 cyber threat intelligence environment file file transfer ipswitch managed managed file transfer mft moveit popular privileges progress progress software software tool transfer unauthorized access vulnerabilities

More from www.anomali.com / Anomali Blog

Anomali Cyber Watch: Cadet Blizzard - New GRU APT, ChamelDoH Hard-to-Detect Linux RAT, Stealthy DoubleFinger … 11 months, 1 week ago | www.anomali.com

access anomali anomali cyber watch apt +28

Are you ready for MOVEit? 11 months, 2 weeks ago | www.anomali.com

access adversaries anomali cve +21

Anomali Cyber Watch: Fractureiser Attempted Clipboard-Poisoning VM Escape, Asylum Ambuscade Spies as a Side Job, … 11 months, 2 weeks ago | www.anomali.com

advanced anomali anomali cyber watch asylum +31

Anomali Cyber Watch: LEMURLOOT on Exploited MOVEit Transfers, Zero-Click iOS Exploit Targeted Kaspersky, Qakbot Turns … 11 months, 3 weeks ago | www.anomali.com

adware anomali anomali cyber watch botnets +29

Anomali Cyber Watch: Shadow Force Targets Korean Servers, Volt Typhoon Abuses Built-in Tools, CosmicEnergy Tests … 1 year ago | www.anomali.com

anomali anomali cyber watch china cosmicenergy +25

Anomali Cyber Watch: CloudWizard Targets Both Sides in Ukraine, Camaro Dragon Trojanized TP-Link Firmware, RA … 1 year ago | www.anomali.com

anomali anomali cyber watch apt babuk +26

Anomali Cyber Watch: Lancefly APT Adopts Alternatives to Phishing, BPFdoor Removed Hardcoded Indicators, FBI Ordered … 1 year ago | www.anomali.com

anomali anomali cyber watch apt backdoors +22

Anomali Cyber Watch: Custom Virtual Environment Hides FluHorse, BabyShark Evolved into ReconShark, Fleckpe-Infected Apps Add … 1 year ago | www.anomali.com

anomali anomali cyber watch apps apt +21

Anomali Cyber Watch: APT37 Adopts LNK Files, Charming Kitten Uses BellaCiao Implant-Dropper, ViperSoftX Infostealer Unique … 1 year, 1 month ago | www.anomali.com

anomali anomali cyber watch apt apt37 +25

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com