all InfoSec news
Update now! MOVEit Transfer vulnerability actively exploited
June 3, 2023, 12:05 a.m. | MalBot
Malware Analysis, News and Indicators - Latest topics malware.news
On May 31, 2023, Progress Software released a security bulletin about a critical vulnerability in MOVEit Transfer.
The security bulletin states:
“a SQL injection vulnerability has been found in the MOVEit Transfer web application that could allow an un-authenticated attacker to gain unauthorized access to MOVEit Transfer's database. Depending on the database engine being used (MySQL, Microsoft SQL Server, or Azure SQL), an attacker may be able to infer information about the structure and contents of the database in addition …
access actively exploited application critical critical vulnerability database engine exploited injection may moveit moveit transfer progress security security bulletin software sql sql injection states unauthorized access update update now vulnerability web web application
More from malware.news / Malware Analysis, News and Indicators - Latest topics
Jobs in InfoSec / Cybersecurity
Information Technology Specialist II: Network Architect
@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
Cybersecurity Skills Challenge -- Sponsored by DoD
@ Correlation One | United States
Security Operations Center (SOC) Analyst
@ GK Cybersecurity Group | Remote
Cyber Threat Defense - PAM Manager
@ PwC | Amsterdam - Thomas R. Malthusstraat 5
InfoSec Specialist
@ Deutsche Bank | Bucharest
DevSecOps Engineer
@ Swiss Re | Bengaluru, KA, IN