US well being division, regulation corporations newest hit in wide-ranging hack

0
82
US well being division, regulation corporations newest hit in wide-ranging hack


WASHINGTON, June 28 (Reuters) – The U.S. Department of Health and Human Services (HHS) was amongst these affected by a wide-ranging hack centered on a bit of software program known as MOVEit Transfer, a supply at HHS stated on Wednesday.

“While no HHS systems or networks were compromised, attackers gained access to data by exploiting the vulnerability in the MOVEit Transfer software of third-party vendors,” a well being division official acquainted with the matter stated.

Hackers behind the large breach additionally claimed credit score for stealing information from two main regulation corporations, Kirkland & Ellis LLP and Okay&L Gates LLP.

The ransomware gang referred to as cl0p posted the names of Kirkland & Ellis LLP and Okay&L Gates LLP to its leak web site, sometimes an indication that negotiations between the victims and the hackers had damaged down.

The hackers’ claims couldn’t instantly be verified. Kirkland and Okay&L didn’t instantly return messages left after hours. A spokesperson for HHS couldn’t instantly be reached.

HHS’ identify didn’t seem amongst cl0p’s checklist of purported victims. The group has beforehand insisted it does not intentionally steal information from authorities organizations, however that does not imply that information hasn’t been compromised.

Bloomberg earlier reported that HHS was affected by the hack, citing an individual acquainted with the incident on the division as saying that tens of hundreds of information may have been uncovered.

Cl0p did not instantly return an electronic mail looking for remark.

Believed by researchers to be a Russian-speaking group of hackers, cl0p was just lately in a position to acquire entry to a large swathe of organizations’ information by compromising MOVEit Transfer, a file business administration device made by Progress Software (PRGS.O).

Speaking to Reuters forward of the newest claims, Jon Clay, the vice chairman for menace intelligence at cybersecurity agency TrendMicro, described cl0p as a resourceful group with little incentive to cease its shakedown spree.

“They aren’t going away,” he stated. “Unless the heat gets on them very bad.”

Reporting by Raphael Satter; Editing by Lincoln Feast

Our Standards: The Thomson Reuters Trust Principles.

Thomson Reuters

Reporter protecting cybersecurity, surveillance, and disinformation for Reuters. Work has included investigations into state-sponsored espionage, deepfake-driven propaganda, and mercenary hacking.

[adinserter block=”4″]



Source link

LEAVE A REPLY

Please enter your comment!
Please enter your name here