The UK arm of shipping giant DHL said it is investigating a data breach sourced back to its use of the MOVEit, which has been exploited by a Cl0p ransomware group for nearly two months.
DHL, in a statement, confirmed that one of its software providers was impacted by the vulnerability affecting MOVEit, a file-sharing tool from Progress Software. The investigation is ongoing, and we will continue to communicate with those affected when we have more information to share.
DHL becomes the latest major company to announce a breach related to the Clop ransomware gang’s exploitation of the MOVEit bug. Progress Software has patched the software, but the cybercriminals have still been able to find unpatched targets.
Multiple organizations filed documents with regulators in Maine this week confirming the data that was accessed through MOVEit.
- PokerStars said its breach involved the SSN of 110,291 people.
- Pennsylvania-based Franklin Mint Federal Credit Union said 140,963 had their SSN accessed.
- 1st Source Bank exposed the sensitive data of 450,000 customers through its use of MOVEit, providing victims with two years of identity protection services.
- Fidelity & Guaranty Life Insurance Company said about 873,000 people had their SSN and more leaked.
- The American Civil Liberties Union Foundation was also affected by the PBI breach, revealing this week that 575 donors and beneficiaries were affected by the situation.
A recent report indicating that the Clop ransomware group may end up earning anywhere from $75 million to $100 million just from the MOVEit campaign, with that sum coming from just a small handful of victims that succumbed to very high ransom payments.