Hitachi Energy has confirmed having its data stolen in a Clop ransomware attack leveraging a zero-day security vulnerability in the Fortra GoAnywhere Managed File Transfer system, tracked as CVE-2023-0669, BleepingComputer reports.
Data from employees in some countries may have been compromised in the data breach, according to Hitachi Energy, which promptly took down its GoAnywhere MFT, as well as informed impacted employees and authorities regarding the incident.
"To date, we have no information that neither our network operations nor the security or reliability of customer data have been compromised," Hitachi Energy said.
Hitachi Energy's confirmation of being impacted by attacks on Fortra's GoAnywhere file-transfer software comes after earlier disclosures by Community Health Systems, Hatch Bank, and cybersecurity firm Rubrik, which noted that only its non-production IT testing environment was affected by the breach.
Meanwhile, data extortion efforts by Clop ransomware, which declared to have compromised 130 entities using the vulnerability, commenced this month.
Operations of California's Solano Partner Libraries and St. Helena, or SPLASH, continue to be interrupted weeks after the county's library network was targeted by a ransomware attack earlier this month, StateScoop reports.
Several rootkit-like capabilities could be obtained by threat actors through the exploitation of vulnerabilities in Windows' DOS-to-NT path conversion process, including file and process concealment and compromised prefetch file analysis, reports The Hacker News.
Open-source DevOps software project GitLab has also been impacted by the same security issue in GitHub comments that has been exploited by threat actors through Microsoft repository-linked URLs to facilitate the distribution of malware that was made to seem to originate from credible entities' official source code repositories, according to BleepingComputer.