Moveit cyber attack timeline

MOVEit Cyber Attack: A Full Timeline of it

The cyber-attack on MOVEit has sent a shockwave across organizations. It pinpointed the massive threats put forward by cybercriminals. A cybercriminals gang named Clop attacked the document transfer service company. This results in many companies falling prey to data breaches and potential risks.

This article will talk about the detailed timeline of MOVEit. Will shed light on the events surrounding the MOVEit cyber-attack and the actions taken by the involved parties.

What is MOVEit?

MOVEit is a document transfer service and managed file transfer (MFT) solution provided by Ipswitch. It offers secure file transfer capabilities which include encryption, automation, tracking, and user access controls. They help organizations exchange confidential files and comply with data privacy regulations. Moreover, MOVEit is a popular choice for businesses seeking secure file transfer solutions.

MOVEit website landing page
MOVEit website landing page

Logbook of the MOVEit Cyber Attack

Let’s first look at the timeline of the MOVEit cyber-attack:

On June 1: The US government and Security researchers highlighted a crucial vulnerability in MOVEit’s framework. So, a software patch was released by MOVEit to address it.

On June 5: Zellis, a payroll provider declares that it has been affected by the MOVEit cyber-attack. As a result, companies such as the BBC, Boots, and British Airways experience data loss.

On June 7: Victims were threatened by Clop of the risk of their data being posted online. They also asked the users to contact them by 16th June. So in an effort to speed things up a $10 million reward was offered by CISA and the FBI for information on the Clop gang or other cyber actors to foreign governments aiming at US critical base.

On June 8: Ernst & Young (EY), a professional services network, announces its influence by the MOVEit cyber-attack. Resulted in a data breach at Health Service Ireland (HSE).

On June 12: British communications watchdog, Ofcom reveals it has been a victim of the MOVEit cyber-attack, following a data breach impacting 412 employees.

On June 14: Profiles of companies breached during the MOVEit cyber-attack were posted by Clop on its website, without disclosing any stolen data.

On June 15: CISA announces collaboration with multiple US federal agencies affected by the MOVEit cyber-attack, inclusive of two Departments of Energy.

On June 19: PriceWaterhouseCoopers (PwC), an accounting firm reveals its impact by the MOVEit cyber-attack.

On June 21: Data breaches of BBC, Boots, and British Airways were not done by Clop, which was thought to be affected by the MOVEit cyber-attack.

On June 23: PBI Research Services disclose that 4.75 million people’s data from three clients was stolen (Genworth Financial, Wilton Reassurance, and California Public Employees’ Retirement System) due to the MOVEit cyber-attack. Stolen data includes social security numbers, names, dates of birth, and zip codes.

On June 27: Schneider Electric and Siemens Energy reveals that they have been impacted by the MOVEit cyber-attack. Siemens said that no crucial data was compromised during the breach, while Schneider Electric employs mitigations to secure data and initiated an investigation.

As can be seen from the logbook of the MOVEit cyber-attack, the events that unfolded, initiated with the vulnerability being asserted and its utilization by the Clop ransomware gang. Multiple companies, such as high-profile organizations, experienced data breaches, resulting in some data breaches being threatened. But the actual release of stolen data has not yet happened. This incident highlights the importance of quick addressing of software vulnerabilities and using robust cybersecurity in order to protect against such attacks.

For more news and updates on Cybersecurity, visit The Cybersecurity Club.

Post navigation

Leave a Reply

Your email address will not be published. Required fields are marked *

More Schools Hit By Cyber-Attacks Before Term Begins

Tesla Breaching Privacy: Does The Company Spy On Its Customers?

ROK Portal Hoax by North Korean Hackers to Steal Data

OpenAI CEO Warns Of Disinformation And Cyberthreat From ChatGPT