The Department of Energy and several other federal agencies have fallen victim to a ransomware attack, which has also targeted businesses in the UK and other countries worldwide. The US Cybersecurity and Infrastructure Security Agency (CISA) is providing assistance to the affected agencies, as stated by Eric Goldstein, CISA’s executive assistant director of cybersecurity. He assured that they are working urgently to understand the impact of the attack and ensure that remediation happens in a timely manner. Additionally, a senior CISA official mentioned that the hack may have affected several hundred other companies and groups in the US. Various universities and US states have already reported compromises in recent weeks.
The attack specifically targets Progress Software’s MOVEit software, which is commonly used by agencies and firms for data transfers. The company has revealed that a new vulnerability has been discovered which malicious actors could exploit. While it is not confirmed that Russian hackers are behind the attack, US officials believe that a Russian-speaking criminal group, known as Clop, is likely responsible. The group has threatened to release victims’ data if a ransom is not paid this week. Notably, similar hacks occurred earlier this month in the UK, affecting companies such as British Airways, the BBC, and the Boots drugstore chain.
It is also reported that NATO member countries have been impacted by the breach. However, CISA chief Jen Easterly reassured the public that the attack did not gain widespread access to the inner workings of the US government or specific high-value information. She described the attack as largely opportunistic. According to officials, only a small number of agencies were affected, and they do not appear to involve intelligence or military networks. This offers some relief to those concerned that this breach could be as devastating as the SolarWinds attack of late 2020, which was considered a significant counterintelligence failure.
Overall, this ransomware attack has raised concerns due to its widespread impact on federal agencies and businesses globally. The investigation and remediation efforts are ongoing to mitigate the damage caused by the breach. It serves as a reminder of the ever-present threat of cyberattacks and the need for robust cybersecurity measures.
Denial of responsibility! VigourTimes is an automatic aggregator of Global media. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, and all materials to their authors. For any complaint, please reach us at – [email protected]. We will take necessary action within 24 hours.
