US Government Agencies and Other New Victims Hit as Clop Attack Spree Continues

New MOVEit vuln emerges, Chinese hackers behind Barracuda exploitation, Russian charged for LockBit deployment, Teixeira indicted, EU to ban Huawei and ZTE, LockBit hits Indian drug giant, much more

Image by Pete Linforth from Pixabay

The US Cybersecurity and Infrastructure Security Agency (CISA) said that several US federal government agencies, including the Department of Energy (DOE), have been hit in a global cyberattack spree by Russia-based cybercriminal gang Clop that exploits a vulnerability in the widely used MOVEit software from Progress.

The hacks have not had any “significant impacts” on federal civilian agencies, CISA Director Jen Easterly said, adding that the hackers have been “largely opportunistic” in using the software flaw to break into networks. Officials said that no data stolen in the attack has appeared online, and no ransom demands had been made.

DOE’s Oak Ridge Associated Universities and Energy’s Waste Isolation Pilot Plant near Carlsbad, New Mexico, confirmed they experienced data breaches due to the MOVEit vulnera…