Progress Urges Patch for Critical WS_FTP Flaws; Over 2,100 Hit by MOVEit Ransomware Attacks

Progress warns customers to patch critical WS_FTP Server vulnerabilities that could allow remote code execution and unauthorized file operations.
The flaws impact the manager interface and Ad Hoc Transfer Module; Progress recommends upgrading to WS_FTP Server 8.8.2.
Over 2,100 organizations affected by recent MOVEit ransomware attacks that exploited a zero-day vulnerability.
Clop ransomware gang behind the attacks expected to collect $75-100 million in ransom payments.
Progress reports 16% year-over-year revenue increase in recent earnings, but excludes expenses from MOVEit vulnerability.

bleepingcomputer.com

Relevant topic timeline:

10/1/2023

Critical Patches Issued for Exim Mail Server, Cisco, Apple, Chrome, Mozilla; Johnson Controls Hit by Major Ransomware Attack

Progress Software has released security patches for its file-handling product, WS_FTP, after eight vulnerabilities were discovered, including a severe .NET deserialization attack that could allow an attacker to execute commands on the host system, potentially leading to system hijacking and infiltration of IT networks at a large scale. Other tech companies, including Exim, Cisco, Apple, Google, and Mozilla, have also issued urgent updates to address critical vulnerabilities in their systems, while Johnson Controls has experienced a ransomware attack that may pose a national security risk. Additionally, a group claiming responsibility for the Sony attack has allegedly targeted Japanese cell carrier NTT Docomo, raising concerns about a potential new supply chain attack.

10/2/2023

WS_FTP Server Under Attack Days After Vulnerabilities Disclosed

Security researchers have identified a potential mass exploitation of vulnerabilities in Progress Software's WS_FTP Server, with evidence of attacks targeting multiple instances of the software.

Topics

Posted 9/28/2023, 10:02:11 PM