November 20, 2023 at 03:50PM
Progress Software’s MOVEit file transfer application has been exploited by the Russian ransomware group Clop, impacting 2,620 organizations and over 77 million individuals. Avast, the antivirus company, is among the victims, with 3 million customers’ information reportedly leaked on a hacking forum. Welltok, a patient communication services provider, has also experienced data breaches affecting over 1.6 million patients. The breaches highlight the importance of enhanced security measures and dark web monitoring services.
Meeting Notes Takeaways:
1. Progress Software’s vulnerable MOVEit file transfer application has experienced a mass exploitation resulting in numerous data breaches.
2. It is estimated that 2,620 organizations and over 77 million individuals have been impacted by the exploitation.
3. Russian ransomware gang Clop exploited a security hole in MOVEit to steal files from compromised instances.
4. Avast, an antivirus biz, is among the victims, disclosing that some “low-risk customer personal information” was accessed.
5. Avast is offering impacted customers free dark web monitoring services and recommending an enhanced security service for an additional cost.
6. Users have expressed dissatisfaction with Avast’s marketing tactics in light of the data breach.
7. Welltok, a patient communication services provider for healthcare providers, has also experienced data breaches through MOVEit.
8. Welltok has notified over 1.6 million patients that their names, addresses, dates of birth, and health information may have been stolen.
9. Welltok had installed all published patches and security upgrades for MOVEit but still became compromised.
10. The data breach has affected patients with group health plans from Stanford Health Care, Lucile Packard Children’s Hospital Stanford, Stanford Health Care Tri-Valley, Stanford Medicine Partners, Packard Children’s Health Alliance, Michigan’s Corewell Health, Priority Health, and St. Bernards Healthcare.
These are the key takeaways from the meeting notes.