The Hacker News

Progress Patches Critical MOVEit Automation Bug Enabling Authentication Bypass

MOVEit Automation flaws (CVE-2026-4670, CVE-2026-5174) enable bypass and escalation, risking enterprise data exposure.

Progress warns of critical MOVEit Automation auth bypass flaw

Progress Software warned customers to patch a critical authentication bypass vulnerability in its MOVEit Automation ...
TechCrunch

SEC is investigating MOVEit mass-hack, says Progress Software

U.S. securities regulators have opened a probe into the MOVEit mass-hack that has exposed the personal data of at least 64 million people, according to the company that made the affected software. In ...
ZDNet

A new MOVEit vulnerability is igniting hacking attempts. Companies should patch ASAP

I wore the world's first HDR10 smart glasses TCL's new E Ink tablet beats the Remarkable and Kindle Anker's new charger is one of the most unique I've ever seen Best laptop cooling pads Best flip ...
JD Supra

NASCO Confirms MOVEit-Related Data Breach Resulted in Leaked Healthplan Data

In October 2023, NASCO filed a notice of data breach with the Attorney General of Massachusetts after discovering that a vulnerability within MOVEit, a secure file-transfer application used by the ...
Nasdaq

Progress Enhances MOVEit Cloud with New Web Application Firewall Functionality for Improved ...

Progress has announced the introduction of Web Application Firewall (WAF) functionality to its MOVEit Cloud managed file transfer solution, enhancing security for sensitive data and aiding compliance ...
Dark Reading

Fresh MOVEit Bug Under Attack Mere Hours After Disclosure

A high-severity security vulnerability in Progress Software's MOVEit Transfer software could allow cyberattackers to get around the platform's authentication mechanisms — and it's being actively ...
Dark Reading

How MOVEit Is Likely to Shift Cyber Insurance Calculus

In its recent Security and Exchange Commission (SEC) filing, Progress Software, the company behind the MOVEit file transfer software that's been used to breach dozens of major organizations, says it ...
JD Supra

GRIPA Files Notice of Recent MOVEit Data Breach Affecting Nearly 280k Individuals

On October 26, 2023, Greater Rochester Independent Practice Association Inc. (“GRIPA”) filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights after ...
Benzinga.com

Amazon Confirms Vendor Data Breach Affecting 2.8M+ Employee Contacts, Adds To Growing List ...

Editor’s Note: This story has been updated to include a comment from an Amazon spokesperson. Amazon.com, Inc. (NASDAQ:AMZN) confirmed a vendor data breach exposing employee contact information, ...
Bleeping Computer

Auto parts giant AutoZone warns of MOVEit data breach

AutoZone is warning tens of thousands of its customers that it suffered a data breach as part of the Clop MOVEit file transfer attacks. AutoZone is the leading retailer and distributor of automotive ...
Reuters

Factbox-Who is behind the sweeping MOVEit hack?

(Reuters) - The cl0p ransomware gang is claiming a new set of victims from its hack of the MOVEit file transfer protocol, taking credit on Tuesday for having stolen data from the University of ...