Critical Vulnerability in Progress MOVEit Transfer: Technical Analysis and Recommendations
released on 2023-06-02 @ 07:31:54 AM
IoCs of the critical vulnerability in the MOVEit Transfer product. Threat actors are deploying the human2.aspx backdoor, which allows obtaining a list of all folders, files, and users within MOVEit, downloading any file within MOVEit, and escalating privileges.