The Download
MOVEit, the Progress Software file transfer application used by a number of large enterprises, is vulnerable again, and adversaries have taken notice. The new vulnerability (CVE-2024-5806) with CVSS score of 7.4 is now being actively exploited by adversaries mere hours after publication. MOVEit has a history of exploitable vulnerabilities by ransomware gangs, so they are likely able to reuse existing toolkits and infrastructure with a change in exploit technique in order to jump on this vulnerability fast.
What You Can Do
There are two concerns with this vulnerability. The first is MOVEit file transfer is often used on externally internet facing services. As such it is easy to scan for automatically using internet scale scanners by adversaries. Second, is that the bad guys have jumped on this fast, probably faster than many IT teams. If you are not scanning at least daily, you are giving adversaries an opportunity to get in front of your IT teams. Start scanning with ThreatMate to get in front of adversaries.
To Learn More:
Comments