all InfoSec news
Active exploitation of the MOVEit Transfer vulnerability - CVE-2023-34362 - by Clop ransomware group
June 16, 2023, 6:45 p.m. | MalBot
Malware Analysis, News and Indicators - Latest topics malware.news
- Cisco Talos is monitoring recent reports of exploitation attempts against CVE-2023-34362, a SQL injection zero-day vulnerability in the MOVEit Transfer managed file transfer (MFT) solution that has been actively targeted since late May 2023.
- Successful exploitation could lead to remote code execution (RCE), allowing unauthenticated adversaries to execute arbitrary code to support malicious activity, such as disabling anti-virus solutions (AV) or deploying malware payloads.
- The Clop ransomware group has claimed responsibility for exploiting the vulnerability to deploy a …
adversaries cisco cisco talos clop clop ransomware code code execution cve cve-2023-34362 exploitation file file transfer injection managed managed file transfer may may 2023 mft monitoring moveit moveit transfer ransomware ransomware group rce remote code remote code execution reports solution sql sql injection talos transfer vulnerability zero-day zero-day vulnerability
More from malware.news / Malware Analysis, News and Indicators - Latest topics
Jobs in InfoSec / Cybersecurity
Sr. Staff Security Engineer
@ Databricks | San Francisco, California
Security Engineer
@ Nomi Health | Austin, Texas
Senior Principal Consultant, Security Architecture
@ 6point6 | Manchester, United Kingdom
Cyber Policy Advisor
@ IntelliBridge | McLean, VA, McLean, VA, US
TW Full Stack Software Engineer (Access Control & Intrusion Systems)
@ Bosch Group | Taipei, Taiwan
Cyber Software Engineer
@ Peraton | Annapolis Junction, MD, United States