Critical MOVEit Transfer Vulnerability Updates

Author

Jaedri Wood

Publish Date

Type

Cyber Alert

Topics
  • Cybersecurity
  1. Insights
  2. Critical MOVEit Transfer Vulnerability Updates

Progress Software discovered a critical SQL injection vulnerability (CVE-2023-34362) on May 31st in the MOVEit Transfer software which allowed unauthorized access to the Transfer environment and escalated privileges. As of June 5th, updates and patches for this incident have been provided. All versions of MOVEit Transfer are affected by this vulnerability, so immediate remediation steps should be taken.

Progress Software provides the following remediation steps to help protect against this vulnerability:

  1. Disable all HTTP and HTTPs traffic to your MOVEit Transfer environment.
  2. Administrators should review, delete, and/or reset any unauthorized files, accounts, and credentials.
  3. Review and download the appropriate patch(es) directly from Progress Software’s website.
  4. Verify that unauthorized files and accounts have been successfully deleted.
  5. Enable all HTTP and HTTPs traffic to your MOVEit Transfer environment.
  6. Continue to monitor network, endpoints, and logs for IoCs (Indicators of Compromise).

How we help

Our cybersecurity and risk services can help organizations strengthen their line of defense against phishing attacks and other destructive cybercrime tactics.

  • Aponix Protect™ to build a comprehensive cybersecurity and technology risk management program tailored to your business needs.
  • Business impact analysis and business continuity plans complete with robust policies, plans, and procedures to better protect your company from data breaches and efficiently recover from a cyber incident or significant business disruption.
  • Risk assessments to identify and remediate gaps in a firm’s current cybersecurity and regulatory state, as well as figure out how a firm stands up against existing frameworks (SOC, PCI, NIST). 
  • Staff training and threat monitoring to educate on industry best practices, cyber trends, and emerging threats. 
  • Vulnerability and penetration testing to reduce the risk of financial, operational, and reputational losses that can result from a breach. 

For questions about this alert, or to find out more about our services, please reach out to your ACA account executive or contact us

Contact Us

Related insights

2024 ACA Conference

Highlights From the 2024 ACA Conference

As the curtains close on the ACA Conference 2024, the echoes of transformative dialogue and insightful revelations resonate, shaping the trajectory of GRC in financial services.

News
  • Compliance
  • RegTech
  • Cybersecurity
  • ESG
  • Performance
  • Managed Services
  • SEC
cyber lock

Critical Vulnerability Detected in Palo Alto Networks' GlobalProtect Gateways

A popular firewall used in the financial industry is under attack due to a critital zero-day vulnerability. Firms that use Palo Alto Networks' firewall need to update their software to protect their systems.

Cyber Alert
  • Cybersecurity
abstract image with a lock and shield

Two Important Cybersecurity Alerts from CISA

The Cybersecurity and Infrastructure Security Agency (CISA) issued two advisories that require impacted firms to take immediate action.

Cyber Alert
  • Cybersecurity