Security News > 2023 > August > The MOVEit hack and what it taught us about application security
The MOVEit hack was not the same as classic ransomware attacks for which groups like Clop initially gained notoriety.
Emerging digital forensic analysis from the aftermath of MOVEit suggests the hackers knew about the zero-day flaw in MOVEit as far back as 2021 when they tested it out covertly to see how much access they could get.
The MOVEit hack progressed from manually testing the SQL injection flaw to exploiting large numbers of organizations with it in an automated way.
The actual hack worked by exploiting the SQL vulnerability to install a backdoor in MOVEit that facilitated data downloads from organizations using the file transfer solution.
BBC. The world's media took swift note of the MOVEit hack when it emerged the UK's state broadcaster was one of the victims.
Sporadic or infrequent penetration testing won't suffice to secure your network or apps from incidents like the MOVEit hack.
News URL
Related news
- T-Mobile US fined $31.5M for network security breaches between 2021 and 2023 (source)
- US govt officials’ communications compromised in recent telecom hack (source)
- T-Mobile US 'monitoring' China's 'industry-wide attack' amid fresh security breach fears (source)
- Chinese cyberspies, Musk’s Beijing ties, labelled ‘real risk’ to US security by senator (source)