MOVEit hackers leverage new zero-day bug to breach organizations (CVE-2023-47246)

A critical zero-day vulnerability (CVE-2023-47246) in the SysAid IT support and management software solution is being exploited by Lace Tempest, a ransomware affiliate known for deploying Cl0p ransomware. Lace Tempest has previously exploited zero-day vulnerability (CVE-2023-34362) in Progress Software’s MOVEit Transfer installations to steal data from many enterprises and public sector organizations. The group has also similarly leveraged zero days in the Accellion file transfer appliance and Fortra’s GoAnywhere file transfer solution. CVE-2023-47246 exploited The … More →

The post …

0 day affiliate breach bug cl0p cl0p ransomware critical cve cve-2023-34362 cve-2023-47246 data don't miss enterprises exploit exploited extortion hackers hot stuff itsm it support lace tempest management microsoft moveit moveit transfer organizations progress progress software public ransomware security update software solution steal support sysaid tempest transfer vulnerability web shell zero-day zero-day bug zero-day vulnerability