June 12, 2023

CL0P Ransomware Gang Exploiting CVE-2023-34362

June 12, 2023

What we know so far

On May 27, 2023, the CL0P Ransomware Gang, also known as TA505, started exploiting a newly discovered vulnerability (CVE-2023-34362) in Progress Software's MOVEit Transfer, a managed file transfer solution. By infecting internet-facing MOVEit Transfer web applications with a web shell named LEMURLOOT, the gang gained unauthorized access to the underlying MOVEit Transfer databases and stole data. TA505 is known as one of the most prolific phishing groups in recent years.

Arrow Right

Schedule a test

Subscribe to advisory alerts

Be immediately notified of new advisories and associated security tests

More advisories