Critical Vulnerability in MOVEit Software Threatens Global Data Security

Progress Software urges immediate patching as hackers exploit severe authentication flaw in widely-used file transfer tool.

The vulnerability, CVE-2024-5806, is rated 9.1 out of 10 in severity and affects MOVEit's SFTP module.
Hackers can bypass authentication, gaining access to sensitive data using null strings or cryptographic hashes.
Over 2,700 networks globally use MOVEit, making the potential impact extensive.
Progress Software has released a patch and advises blocking public RDP access to mitigate risks.
Last year's similar MOVEit vulnerability compromised thousands of organizations, including major government entities.