Lmst
Login

#ProgressSoftware

Xavier Ashe :donor:Xavier@infosec.exchange
2025-01-27

I'm pissed off at the Progress (sic) Software, the new owners of #Fiddler. They took #FiddlerCap down. You have to buy their huge "Fiddler Everywhere Reporter" suite. Does anyone know of a good replacement for FiddlerCap?
#ProgressSoftware
telerik.com/fiddler/fiddlercap

gtbarrygtbarry
2024-09-10

Personal Data Breached for Nearly 1 Million Medicare Enrollees

Protected health information for nearly 1 million Medicare beneficiaries may have been compromised by a 2023 “security vulnerability” in software used by a Medicare contractor in Wisconsin

news.bloomberglaw.com/health-l

Paul Shreadpshread@masto.ai
2024-08-16

Between Black Hat, DEF CON and Patch Tuesday, it's a very good week to be working closely with the Cyble threat intelligence team. Here are six 9.8-severity vulnerabilities and a perfect 10 at high risk of exploits, and more.
#VulnerabilityManagement #PatchManagement #AttackSurfaceManagement #ThreatIntelligence #Security #Cybersecurity #BlackHat #BHUSA #DEFCON #PatchTuesday #SAP #Microsoft #Ivanti #AMD #Cisco #ProgressSoftware #SolarWinds

thecyberexpress.com/top-vulner

🖱🛠👉👕👈 SOSOrdinet 🎣🖥️🐛 🗞️SOSOrdinet@social.targaryen.house
2024-06-26

“Nous exhortons fortement tous les clients de #MOVEit Transfer” : à nouveau, vulnérabilités critiques de MOVEit ! (patch disponible…)

blog.sosordi.net/2024/06/nous-

#securite #data #ProgressSoftware

gtbarrygtbarry
2023-11-04

Hackers Accessed 632,000 Email Addresses at US Justice, Defense Departments

A Russian-speaking hacking group obtained access to the email addresses of about 632,000 US federal employees at the departments of Defense and Justice as part of the sprawling MOVEit hack last summer

bloomberg.com/news/articles/20

gtbarrygtbarry
2023-10-19

SEC is investigating MOVEit mass-hack, says Progress Software

U.S. securities regulators have opened a probe into the MOVEit mass-hack that has exposed the personal data of at least 64 million people.

Progress also said in the filing that it expects to see minimal financial impact from the MOVEit mass-hacks, despite the broad scale of the incident.

techcrunch.com/2023/10/11/sec-

🛡 H3lium@infosec.exchange/:~# :blinking_cursor:​H3liumb0y@infosec.exchange
2023-10-02

"🚨 Critical Vulnerabilities Unearthed in WS_FTP Server by Progress Software 🚨"

Progress Software has issued a warning regarding multiple critical vulnerabilities found in its WS_FTP Server. The vulnerabilities span a range of issues including .NET deserialization, directory traversal, SQL injection, and cross-site scripting, with severity scores ranging from 5.3 (Medium) to a whopping 10.0 (Critical). The most severe among them, CVE-2023-40044 and CVE-2023-42657, could potentially allow attackers to execute remote commands on the WS_FTP Server operating system and perform unauthorized file operations respectively. Progress has rolled out patches to address these vulnerabilities, urging users to upgrade to the latest version, 8.8.2, to safeguard against exploitation.

The article is penned by Eswar on October 2, 2023, who is known for his engaging cybersecurity content. This discovery sheds light on the importance of regular security audits and timely patch management to thwart potential cyber threats. 🛡️🔐

Source: GBHackers

Tags: #CyberSecurity #Vulnerability #WS_FTP #ProgressSoftware #PatchManagement #InfoSec #CVE202340044 #CVE202342657

Cybernewscybernews@infosec.exchange
2023-09-29

#ProgressSoftware, the company behind the #MOVEit Transfer tool which hackers exploited to breach thousands of businesses, said its WS_FTP Server #software needs to be patched for a maximum severity bug.
#databreach #tech #cybersecurity #infosec

cybernews.com/news/moveit-make

gtbarrygtbarry
2023-09-27

College kids should review passwords and credit amid massive Progress software data breach

A data breach affecting nearly 200 colleges and universities is causing some students to feel uneasy - experts urge them to safeguard their information and credit.

Due to Progress Software MOVEit service hacked in May

usatoday.com/story/news/educat

gtbarrygtbarry
2023-09-25

National Student Clearinghouse data breach impacts 890 schools

"On May 31, 2023, the Clearinghouse was informed by our third-party software provider, Progress Software, of a cybersecurity issue involving the provider's MOVEit Transfer solution"

bleepingcomputer.com/news/secu

gtbarrygtbarry
2023-09-09

MOVEit, the biggest hack of the year, by the numbers

on August 25, the number of known victim organizations crossed the 1,000 milestone and the number of impacted individuals surpassed the 60 million mark

US-based organizations account for 83.9% of known corporate victims

$9,923,771,385 - is the estimated total cost of the MOVEit mass-hacks so far

techcrunch.com/2023/08/25/move

Mr.Trunkmrtrunk@dromedary.seedoubleyou.me
2023-08-25

TechcrunchSecurity: MOVEit, the biggest hack of the year, by the numbers techcrunch.com/2023/08/25/move #ProgressSoftware #moveitmasshacks #cybersecurity #filetransfers #cyberattack #Security

gtbarrygtbarry
2023-08-21

Cl0p dumps all MOVEit victim data on clearnet, threat insiders talk ransom strategy

“On 15 August we start publishing of every company on list that do not contact. You data is going to publishing on clearweb and Tor and for large company we also create clearweb URL to help google index you data.”

cybernews.com/security/clop-pu

gtbarrygtbarry
2023-08-18

New York Life data exposed in third-party breach

Insurance Company, was exposed to the MOVEit Transfer attacks via third-party vendor Pension Benefit Information.

Prudential Insurance, California Public Employees’ Retirement System and several others were also exposed via the MOVEit Transfer service that PBI used.

cybernews.com/news/new-york-li

gtbarrygtbarry
2023-08-15

Colorado warns 4 million of data stolen in IBM MOVEit breach

The Colorado state government agency that manages the Health First Colorado (Medicaid) and Child Health Plan Plus programs is alerting more than four million individuals of a data breach that impacted their personal and health information

bleepingcomputer.com/news/secu

gtbarrygtbarry
2023-08-08

US govt contractor Serco discloses data breach after MoveIT attacks

Serco Inc, the Americas division of multinational outsourcing company Serco Group, has disclosed a data breach after attackers stole the personal information of over 10,000 individuals from a third-party vendor's MoveIT managed file transfer server.

bleepingcomputer.com/news/secu

gtbarrygtbarry
2023-07-30

Another Cl0p data breach victim goes public, millions affected

2,630,717 people, including 17,640 Maine state residents, may have had their names and Social Security numbers stolen by Cl0p

cybernews.com/news/cl0p-moveit

gtbarrygtbarry
2023-07-28

8 million people hit by data breach at US govt contractor Maximus

US government contractor Maximus has disclosed a of personal data of 8 to 11 million people during the recent MOVEit attacks.

Maximus manages and administers US government-sponsored programs, including federal and local programs and student loan servicing.

bleepingcomputer.com/news/secu

gtbarrygtbarry
2023-07-27

Clop now leaks data stolen in MOVEit attacks on clearweb sites

The Clop ransomware gang is copying an ALPHV ransomware gang extortion tactic by creating Internet-accessible websites dedicated to specific victims, making it easier to leak stolen data and further pressuring victims into paying a ransom.

bleepingcomputer.com/news/secu

gtbarrygtbarry
2023-07-14

Deutsche Bank confirms provider breach exposed customer data

Deutsche Bank AG has confirmed to BleepingComputer that a data breach on one of its service providers has exposed its customers' data in a likely MOVEit Transfer data-theft attack.

bleepingcomputer.com/news/secu

Client Info

Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst