web analytics

Cl0p gang tells MOVEit hack victims to contact it before June 14, or else… – Source: grahamcluley.com

Rate this post

Source: grahamcluley.com – Author: Graham Cluley

Cl0p gang tells MOVEit hack victims to contact it before June 14, or else...

The Russia-linked cybercrime gang thought to be behind a hack that has impacted companies around the world has posted a message to its corporate victims.

In short, firms affected by the MOVEit hack are being told to congtact the Cl0p ransomware group before June 14, or face the consequences.

In a message posted on its dark web leak site, accessible via the Tor browser, the Cl0p gang tells companies that use Progress’s MOVEit Transfer product that it exploited a vulnerability in the software to access data.

Cl0p message
Part of the message posted on Cl0p’s leak website.

Unusually for an extortion demand, and perhaps reflecting the likelihood that a wide variety of companies may have been impacted by the flaw, the message asks that affected companies make contact with the extortionists.

Once contact has been made, negotiations will begin to determine a price for the deletion of the stolen data claim Cl0p. However, if contact is not made before June 14, or if the ransom haggling lasts for too long, then the data will start to be published online.

Victims of the hack are believed to include the BBC, Aer Lingus, British Airways, and UK pharmacy chain Boots – all of whom had outsourced payroll management to Zellis, which used the vulnerable MOVEit software.

Signing itself off as “FRIENDLY CLOP,” the hackers claim that they have already erased all data relation to a governments, cities, and police services as it “has no interest to expose such information.”

More likely they are simply more worried about overly-antagonising law enforcement…

Found this article interesting? Follow Graham Cluley on Twitter or Mastodon to read more of the exclusive content we post.


Graham Cluley is a veteran of the cybersecurity industry, having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon’s Anti-Virus Toolkit for Windows. Now an independent analyst, he regularly makes media appearances and is an international public speaker on the topic of cybersecurity, hackers, and online privacy.
Follow him on Twitter, Mastodon, Bluesky, or drop him an email.

Original Post URL: https://grahamcluley.com/cl0p-gang-tells-moveit-hack-victims-to-contact-it-before-june-14-or-else/

Category & Tags: Data loss,Ransomware,Vulnerability,Cl0p,data breach,extortion,vulnerability – Data loss,Ransomware,Vulnerability,Cl0p,data breach,extortion,vulnerability

Views: 0

LinkedIn
Twitter
Facebook
WhatsApp
Email

advisor pick´S post