In the biggest hack of the year, the file transfer platform MOVEit, developed by Progress Software, fell victim to a Russian ransomware operation called Cl0p back in May. This breach exploited a previously unknown vulnerability in the MOVEit software. Although a patch was quickly issued, some users failed to install it, leaving them vulnerable to attacks.
MOVEit is widely used by thousands of governments, financial institutions, and numerous public and private companies worldwide. Shockingly, it is estimated that this breach has impacted at least 455 organizations and over 23 million individuals who were customers of MOVEit. Among the compromised entities are well-known names such as the US Department of Energy, New York City Department of Education, Shell, Ernst & Young, and more. Most of the affected organizations (73%) are based in the US, with finance, professional services, and educational institutions being the hardest-hit sectors.