News item |: 02-06-2023 |: 20:29
A vulnerability has been found in the file sharing application MOVEit Transfer. The likelihood of this vulnerability being exploited and its potential impact is rated high. The app’s developer, Progress, has now released a security advisory. Access to compromised systems and data stored on them may occur from May 28. The vulnerability could also be exploited to gain administrative privileges.
Safety advice
NCSC recommends that organizations using MOVEit Transfer go through the step-by-step plan outlined by Progress, install security updates that are available as soon as possible, and consider accompanying IoCs for detection and hunting. NCSC has created a Github page to support organizations in identifying vulnerable systems and helping them take action. NCSC will actively monitor this GitHub page in the near future.
Monitoring
NCSC is in contact with national and international partners and monitors developments. If yes, additional information will be provided.