Action1 Corporation, a provider of a risk-based patch management platform designed for work-from-anywhere enterprises, has launched a free tool that empowers IT teams to detect compromised MOVEit instances and defend against ransomware attacks exploiting this vulnerability.
MOVEit, a managed file transfer software developed by Progress Software, has been used by thousands of IT departments in the financial, health care and government sectors.
Recently, a critical vulnerability (CVE-2023-34362) emerged in MOVEit, enabling unauthorized access to the MOVEit Transfer’s database and the potential alteration or deletion of its elements. Exploiting this vulnerability, hackers have affected more than 130 organizations and millions of individuals.
To help organizations mitigate the threat of MOVEit vulnerability, Action1 releases these capabilities, free for the first 100 endpoints:
- Built-in instant “MOVEit Vulnerability Status” report. Check all endpoints for compromised instances of MOVEit Secure Managed File Transfer with exploited CVE-2023-34362 vulnerability.
- Software inventory. Gain visibility into all vulnerable instances of MOVEit within your network.
- Automated scripting and patching capabilities. Once compromised servers have been detected, users can run automated scripts to remove the compromised file from all affected servers and install the necessary patch, simplifying the process and saving time.
“What is particularly concerning is that 2,500 vulnerable MOVEit Transfer instances are exposed to the internet, according to researchers. As a result, we might anticipate an increasing number of companies falling victim to ransomware attacks,” warned Mike Walters, VP of Vulnerability and Threat Research and co-founder of Action1.
To get a free Action1 account, visit www.action1.com.