Since 2019, the notorious Clop group, also known as TA505, has been wreaking havoc by distributing ransomware.
Over 3,000 organizations in the United States and 8,000 globally have been targeted by the group.
Furthermore, the group functions as an initial access broker, offering compromised networks to other groups. In addition, they operate a specialized botnet that is focused on carrying out financial fraud and phishing activities.
In addition to that, the group has successfully created three cutting-edge exploits and utilizes tailor-made webshells and malware toolkits in their sophisticated attacks. What sets them apart from other extortion groups is their advanced level of sophistication, which goes beyond the typical reliance on open-source tools.
According to the research KonBriefing research, Till now United States of America is the highest victimized country by MOVEit. 294 organizations of USA have been affected by MOVEit.
ALSO READ:
By infosecbulletin
/ Tuesday , September 10 2024
Researchers at Fortinet unveiled hackers to exploit GeoServer RCE vulnerability deploying malware relating to the vulnerability tracked as “CVE-2024-36401, has...
Read More
By infosecbulletin
/ Monday , September 9 2024
Multiple vulnerabilities have been published by IBM in its webMethods Integration Server which cloud allow attackers to execute arbitrary commands...
Read More
By infosecbulletin
/ Sunday , September 8 2024
Progress Software released an emergency fix for a critical vulnerability (10/10) in its Loadmaster and LoadMaster Multi-Tenant Hypervisor products, which...
Read More
By infosecbulletin
/ Thursday , September 5 2024
CISCO released security updates for two critical security flaws impacting its smart Licensing Utility that could allow unauthenticated, remote attackers...
Read More
By infosecbulletin
/ Wednesday , September 4 2024
OpenBAS is a platform that helps organizations to plan, schedule, and conduct crisis exercises, adversary simulations, and breach simulations. OpenBAS...
Read More
By infosecbulletin
/ Wednesday , September 4 2024
Zyxel has released software updates to fix a serious security issue in certain access point (AP) and security router versions....
Read More
By infosecbulletin
/ Tuesday , September 3 2024
VMware released a security advisory for a major vulnerability in the VMware Fusion product. This vulnerability could be exploited by...
Read More
By infosecbulletin
/ Tuesday , September 3 2024
Indian Computer Emergency Response Team (CERT-IN) issued advisories about multiple vulnerabilities in various Palo Alto Networks applications. Attackers could exploit...
Read More
By infosecbulletin
/ Tuesday , September 3 2024
Malaysia is quickly becoming a leading choice for investing in data centers. It aims to generate RM3.6 billion (US$781 million)...
Read More
By infosecbulletin
/ Tuesday , September 3 2024
US authorities have issued a cybersecurity advisory about a ransomware group called RansomHub. The group is thought to have stolen data...
Read More
Data breaches cost $4.45 million in 2023 average
While Germany is the 2nd affected country with 33 organizational attack and Canada’s 22 organizations have been affected in the most sophisticated attack.