SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Data Breaches

University System of Georgia Says 800,000 Impacted by MOVEit Hack

University System of Georgia says Social Security numbers and bank account numbers were compromised in the May 2023 MOVEit hack.

University System of Georgia is notifying 800,000 individuals that their personal and financial information was compromised in the May 2023 MOVEit hack.

The data breach occurred after the Russia-linked Cl0p ransomware group exploited a vulnerability in Progress Software’s MOVEit Transfer managed file transfer (MFT) software and stole data from organizations using it.

To date, more than 2,000 organizations have disclosed impact from the MOVEit hack, including roughly 900 schools in the United States. Over 60 million individuals are believed to have been affected.

University System of Georgia (USG), which was using MOVEit to “transfer and store sensitive data”, is the latest education entity to disclose impact from the attack.

In a notification letter to the impacted individuals, a copy of which was submitted to the Maine Attorney General’s Office, USG revealed that Social Security numbers, dates of birth, bank account numbers, and tax documents that included tax ID numbers were stolen in the attack.

“The Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) have determined that data was acquired from the MOVEit platform by a cybercriminal group named Cl0p. The files and information obtained by this cybercriminal group will likely be published on its website,” USG said.

Although the data breach report has been listed on the Maine AGO’s website only this week, USG started sending the notification letters in mid-April, when it also posted an incident notice on its website.

USG is providing the affected individuals with one year of free credit monitoring and related services.

Advertisement. Scroll to continue reading.

Providing services across the state of Georgia, USG is composed of 26 higher education institutions, including research, comprehensive and state universities, state colleges, the Georgia Public Library Service, and the Georgia Archives.

Related: Kaiser Permanente Data Breach Impacts 13.4 Million Patients

Related: 1.3 Million Maine Residents Impacted by MOVEit Hack

Related: SEC Investigating Progress Software Over MOVEit Hack

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

More from

Latest News

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

CIEM Chat: How to Reduce Cloud Identity Risk
March 26, 2024

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

Virtual Event: Ransomware Resilience & Recovery Summit
April 17, 2024

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

People on the Move

OT zero trust access and control company Dispel has appointed Dean Macris as its CISO.

Cloud identity and security solutions firm Saviynt has hired former Gartner Analyst Henrique Teixeira as Senior Vice President of Strategy.

PR and marketing firm FleishmanHillard named Scott Radcliffe as the agency's global director of cybersecurity.

More People On The Move

Expert Insights

Related Content

ChatGPT attack ChatGPT attack

Data Breaches

ChatGPT Data Breach Confirmed as Security Firm Warns of Vulnerable Component Exploitation

OpenAI has confirmed a ChatGPT data breach on the same day a security firm reported seeing the use of a component affected by an...

March 28, 2023
Zendesk Hacked After Employees Fall for Phishing Attack

Cybercrime

Zendesk Hacked After Employees Fall for Phishing Attack

Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

January 24, 2023
Okta hack Okta hack

CISO Strategy

Okta Hack Blamed on Employee Using Personal Google Account on Company Laptop

Okta is blaming the recent hack of its support system on an employee who logged into a personal Google account on a company-managed laptop.

November 3, 2023
Hackers Stole Encrypted Backups, MFA Settings from GoTo, LastPass Hackers Stole Encrypted Backups, MFA Settings from GoTo, LastPass

Data Breaches

LastPass Says DevOps Engineer Home Computer Hacked

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...

February 27, 2023
Sony hacked Sony hacked

Data Breaches

Sony Confirms Data Stolen in Two Recent Hacker Attacks

Sony shares information on the impact of two recent unrelated hacker attacks carried out by known ransomware groups. 

October 5, 2023
Delta Dental Says Data Breach Exposed 7 Million Customers

Data Breaches

Delta Dental Says Data Breach Exposed 7 Million Customers

Delta Dental of California says over 6.9 million individuals were impacted by a data breach caused by the MOVEit hack.

December 18, 2023
Millions of AT&T Customers Notified of Data Breach at Third-Party Vendor

Data Breaches

Millions of AT&T Customers Notified of Data Breach at Third-Party Vendor

AT&T is notifying millions of wireless customers that their CPNI was compromised in a data breach at a third-party vendor.

March 10, 2023
Atlassian Investigating Security Breach After Hackers Leak Data

Data Breaches

Atlassian Investigating Security Breach After Hackers Leak Data

A group of hackers has leaked Atlassian employee records and floorplans, information that was obtained from third-party workplace platform Envoy.

February 17, 2023