A U.K.-based energy giant known for its extensive operations in the oil and gas sector, was impacted by the exploit of the vulnerability in the MOVEit Transfer software by an attacking group.
According to sources, the attacking group had been exploiting the flaw since May 2023 to gain access to a diverse range of entities and subsequently started to list its victims on a dark web leak site. The affected parties span across U.S. financial services, European energy conglomerates, and several other sectors. Diverging from common tactics, the attacking group chose not to directly notify the infiltrated entities but posted a blackmail note on its leak site, directing victims to initiate contact before an impending deadline.
Some organizations, such as governmental departments, have confirmed potential data exposure involving citizens. However, the attacking group asserts that they've deleted data for select government institutions.