Corporate Security Expert Says MOVEit Cyber Attack Reinforces Importance Of Investment In Prevention

Lisa Baker, Editor, UK Business News June 15, 2023

Businesses Have Become The New Frontline For Cyber Attackers, Warns KCS Group Europe

Leading corporate security experts, KCS Group Europe (KCSGE) warn that vulnerability of MOVEit – that has affected Zellis software clients – indicates how far-reaching individual cyber incidents can be and reinforces the importance of cybersecurity across all businesses.

More than twenty organisations, from aviation, transport, logistics, healthcare, media, technology, utilities and public services have reported a loss of data. The cybercrime syndicate which is believed to be responsible for the attack has warned that companies have until June 14th to meet their demands or the data will be published.

Jonathan Marimo

KCSGE Head of Cyber and Information Security, Jonathan Marimo says: “The MOVEit transfer system flaw has allowed escalated privileges and unauthorised access.

“In other words, a successful attack allows unauthenticated remote access to any folder or file within a MOVEit system.”

 

The threat group which has claimed credit for the attack is the Clop ransomware group, also known as TA505, from Russia. They have been known to exploit similar vulnerabilities before to steal data and extort victims.

The Clop group posted a message on the dark web saying, after initial contact via email, that organisations would receive a unique link to a real time session where they would be given a price for their data.

If no agreement is reached after seven days, the attackers say they will begin to publish the data.

 

Marimo says: “This incident highlights once again how crucial it is for every organisation to have an incident response plan and the importance of cybersecurity throughout the workforce and associated partnerships.

“Cybersecurity isn’t just an IT issue, it’s a business-wide issue. People are the first and last defence in cybersecurity and should be at the centre of the solution.

“Organisations must take a proactive approach to regularly update software and immediately patch vulnerabilities that can be exploited in attacks.

“Cybercrime is becoming more sophisticated and businesses are becoming the new frontline. Mitigating steps should be taken to protect an organisation’s data and this begins with an ongoing investment in prevention.”

 

More Stories

Panasonic’s KAIROS Platform Delivers a Competitive Esports Advantage for University of Staffordshire

NTSI Publishing Team October 31, 2024

Energy sector warned over strict legal investment rules

Lisa Baker, Editor, UK Business News October 31, 2024

UK salaries trail the US as businesses brace for Autumn Budget impact, Deel data reveals

Lisa Baker, Editor, UK Business News October 31, 2024

You may have missed

trees beside white house

Quick stamp duty rise is to avoid market distortion, says property expert

Lisa Baker, Editor, UK Business News November 2, 2024

In the Welsh Wind Second Release Whisky Pre-Sale a Sell Out

Lisa Baker, Editor, UK Business News November 1, 2024
gambling, casino, bingo

The History of Casinos: From Ancient Times to the Digital Era

Lisa Baker, Editor, UK Business News October 31, 2024
Headshot of Gus Williams.

The Budget – key next steps for businesses

NTSI Publishing Team October 31, 2024

Panasonic’s KAIROS Platform Delivers a Competitive Esports Advantage for University of Staffordshire

NTSI Publishing Team October 31, 2024