May 2023 Threat Intelligence Summary
Introduction When threats emerge, the Fidelis Cybersecurity Threat Research team (TRT) is ready. Each month, the Threat Intelligence Summary examines the latest threats and trends so you can stay resilient against cyber adversaries. In May 2023, we saw significant ransomware activity from several different groups, including a shift in tactics for BianLian, Google announced the […]
New MOVEit Vulnerability: What to Do NOW to Protect Your Organization
Introduction On May 31, 2023 Progress Software disclosed a SQL injection vulnerability (CVE-2023-34362) in the MOVEit Transfer that could lead to escalated privileges and potential unauthorized access to the environment. Progress emphasized to its customers that it is extremely important to take immediate action. Affected versions MOVEit Transfer before 2021.0.6 (13.0.6), 2021.1.4 (13.1.4), 2022.0.4 (14.0.4), 2022.1.5 (14.1.5), […]
June 2023 Threat Intelligence Summary
Introduction When threats emerge, the Fidelis Cybersecurity Threat Research team (TRT) is ready. Each month, the Threat Intelligence Summary examines the latest threats and trends so you can stay resilient against cyber adversaries. In June 2023, we saw ongoing instances of non-compliance with CISA Directives related to MOVEit vulnerabilities, indicating persistent patching issues that pose […]