SEC Investigating Progress Software Over MOVEit Hack

Progress Software confirms the SEC has launched its own investigation into costly ransomware zero-days in the MOVEit file transfer software.
The post SEC Investigating Progress Software Over MOVEit Hack appeared first on SecurityWeek.
Continue reading SEC Investigating Progress Software Over MOVEit Hack

Live Exploitation Underscores Urgency to Patch Critical WS-FTP Server Flaw

Rapid7 says attackers are targeting a critical pre-authentication flaw in Progress Software’s WS_FTP server just days after disclosure.
The post Live Exploitation Underscores Urgency to Patch Critical WS-FTP Server Flaw appeared first on SecurityWeek.
Continue reading Live Exploitation Underscores Urgency to Patch Critical WS-FTP Server Flaw

Progress Software Patches Critical Pre-Auth Flaws in WS_FTP Server Product 

Progress Software ships patches for critical-severity flaws in its WS_FTP file transfer software and warns that a pre-authenticated attacker could wreak havoc on the underlying operating system.
The post Progress Software Patches Critical Pre-Auth Flaw… Continue reading Progress Software Patches Critical Pre-Auth Flaws in WS_FTP Server Product 

After Zero-Day Attacks, MOVEit Turns to Security Service Packs

Facing ransomware zero-days, Progress Software will release regular service packs to help customers mitigate critical security flaws.
The post After Zero-Day Attacks, MOVEit Turns to Security Service Packs appeared first on SecurityWeek.
Continue reading After Zero-Day Attacks, MOVEit Turns to Security Service Packs

CISA Order Highlights Persistent Risk at Network Edge

The U.S. government agency in charge of improving the nation’s cybersecurity posture is ordering all federal civilian agencies to take new measures to restrict access to Internet-exposed networking equipment. The directive comes amid a surge in attacks targeting previously unknown vulnerabilities in widely used security and networking appliances. Continue reading CISA Order Highlights Persistent Risk at Network Edge