A MOVEit representative told ABC News on Thursday that they are taking steps to ensure security, including applying patches.

Source: https://abcnews.go.com/Politics/us-government-agencies-hit-cyberattack-official/story?id=100121273

Both of the security notices confirm that TIAA was affected by hackers’ widespread exploitation of a flaw in MOVEit Transfer, an enterprise file transfer tool developed by Progress Software.

Source: https://techcrunch.com/2023/06/30/tiaa-teachers-retirement-fund-moveit/

From there, the web shell utilized MOVEit API calls for file enumeration and data exfiltration.

Source: https://www.itworldcanada.com/article/dental-benefits-group-notifying-almost-7-million-americans-of-moveit-data-theft/555317

Gen Digital, the parent company of Avast, Avira, Norton and LifeLock, has joined the list of organizations admitting they were victimized by the vulnerability in the MOVEit file transfer software.

Source: https://www.itworldcanada.com/article/cyber-security-today-week-in-review-for-the-week-ending-june-23-2023/541605

In a statement shared with TechCrunch last month, U.S. cybersecurity agency CISA said that “several” U.S. government agencies experienced intrusions related to the MOVEit breach.

Source: https://techcrunch.com/2023/07/20/ofcom-comreg-moveit-hacks/

Mandiant said it is investigating “several intrusions” related to the exploitation of the MOVEit vulnerability.

Source: https://techcrunch.com/2023/06/02/hackers-launch-another-wave-of-mass-hacks-targeting-company-file-transfer-tools/

MOVEit is a third-party file sharing software tool used by the National Student Clearinghouse.

Source: https://businessjournaldaily.com/egcc-among-colleges-affected-by-data-breach/

Our DevTools products continued to see best-in-class retention rates and products such as Sitefinity cloud and MOVEit cloud saw many new wins around the globe.

Source: https://seekingalpha.com/article/4570468-progress-software-corporation-prgs-q4-2022-earnings-call-transcript?source=feed_all_articles

Part of the fallout from the breach involving MOVEit is a groundswell of lawsuits seeking class-action status.

Source: https://www.courant.com/2023/09/03/tens-of-thousands-of-ct-residents-have-personal-information-scooped-up-in-massive-cybersecurity-breach/

Progress warns "all versions of MOVEit Transfer are affected by this vulnerability."

Source: https://www.scmagazine.com/news/vulnerability-management/progress-software-new-patches-moveit-transfer

So, if you’re a MOVEit user, make sure that this has been updated if you’re running anything other than the cloud version.

Source: https://nakedsecurity.sophos.com/2023/06/08/s3-ep138-i-like-to-moveit-moveit/

The fallout from this incident — which continues to roll in — began in May when Progress Software disclosed a critical-rated zero-day vulnerability in MOVEit Transfer.

Source: https://techcrunch.com/2023/12/27/moveit-capita-citrixbleed-biggest-data-breaches-2023/

There is no indication at this time that cyber attackers who breached MOVEit have sold, used, shared or released the OMV data obtained from the MOVEit attack.

Source: https://www.americanpress.com/2023/06/15/major-cyber-attack-at-omv-vendor-louisianans-should-act-urgently-to-protect-their-identities/

There is no indication at this time that cyber attackers who breached MOVEit have sold, used, shared or released the OMV data obtained from the MOVEit attack.

Source: https://www.americanpress.com/2023/06/15/major-cyber-attack-at-omv-vendor-louisianans-should-act-urgently-to-protect-their-identities/

TIAA has not yet been listed on the dark web leak site of the Russia-linked Clop ransomware gang, which has claimed responsibility for the ongoing MOVEit cyberattacks.

Source: https://techcrunch.com/2023/06/30/tiaa-teachers-retirement-fund-moveit/

“We took immediate action to prevent further use of the MOVEit service and to implement the recommended security measures.

Source: https://www.insurancejournal.com/news/international/2023/06/13/724981.htm