all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Trustwave Action Response: Zero Day Exploitation of MOVEit (CVE-2023-34362)

Add to bookmarks
June 2, 2023, midnight |

SpiderLabs Blog from Trustwave www.trustwave.com

On May 31, threat actors were discovered targeting a critical zero day in MOVEit Transfer software resulting in escalated privileges and unauthorized data access. The vulnerability being exploited is an SQL injection and has since been patched. Resources links, including one for the patch, are at the bottom of this post.

access action critical cve data data access exploitation exploited injection links may moveit moveit transfer patch privileges resources response software sql sql injection targeting threat threat actors trustwave vulnerability

Visit resource

More from www.trustwave.com / SpiderLabs Blog from Trustwave

Important Security Defenses to Help Your CISO Sleep at Night 1 week, 5 days ago | www.trustwave.com
blog blog posts can ciso +11
2024 Public Sector Threat Landscape: Trustwave Threat Intelligence Briefing and Mitigation Strategies 2 weeks, 4 days ago | www.trustwave.com
balance briefing charge cybersecurity +24
How to Create the Asset Inventory You Probably Don't Have 2 weeks, 5 days ago | www.trustwave.com
asset asset inventory blog blog posts +10
Guardians of the Gateway: Identity and Access Management Best Practices 3 weeks, 5 days ago | www.trustwave.com
access access management best practices blog +16
Protecting Zion: InfoSec Encryption Concepts and Tips 1 month ago | www.trustwave.com
blog blog posts can concepts +11
The Invisible Battleground: Essentials of EASM 1 month, 1 week ago | www.trustwave.com
attack attack surface attack surface management cyber +13
EDR – The Multi-Tool of Security Defenses 1 month, 1 week ago | www.trustwave.com
blog blog posts can cybersecurity +10
Fake Dialog Boxes to Make Malware More Convincing 1 month, 2 weeks ago | www.trustwave.com
dialog engagement fake loader +7
The Secret Cipher: Modern Data Loss Prevention Solutions 1 month, 2 weeks ago | www.trustwave.com
automated can cipher data +18

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com