Multiple U.S. government agencies have been hit by a global cyberattack, according to federal officials. The attack is the latest in a string of hacks targeting a vulnerability in a widely used file-transfer software. The Cybersecurity and Infrastructure Security Agency (CISA) is working to understand the impact of the attack and ensure timely remediation. The hackers reportedly targeted the MOVEit software, which has been the access point for several other recent attacks claimed by the Russian-speaking hacking group CLOP. However, CISA has not explicitly blamed CLOP or any other organization for the cyberattacks, and it is not yet clear if the attacks are related to the growing number of hacks hitting state governments, universities, and other agencies.
MOVEit has rolled out security patches in the wake of the attacks and is "engaged with federal law enforcement and other agencies," according to a spokesperson. The company is committed to playing a leading and collaborative role in the industry-wide effort to combat increasingly sophisticated and persistent cybercriminals.
This attack comes less than a month after Microsoft reported that a state-sponsored Chinese hacking group had been spying on "critical" infrastructure organizations. It is unclear how many organizations were affected, but the National Security Agency is working with partners, including Canada, New Zealand, Australia, and the UK, as well as the U.S. Federal Bureau of Investigation to identify breaches.