Now on Demand: Threat Detection and Incident Response (TDIR) Summit - All Sessions Available
Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Data Breaches

University System of Georgia Says 800,000 Impacted by MOVEit Hack

University System of Georgia says Social Security numbers and bank account numbers were compromised in the May 2023 MOVEit hack.

University System of Georgia is notifying 800,000 individuals that their personal and financial information was compromised in the May 2023 MOVEit hack.

The data breach occurred after the Russia-linked Cl0p ransomware group exploited a vulnerability in Progress Software’s MOVEit Transfer managed file transfer (MFT) software and stole data from organizations using it.

To date, more than 2,000 organizations have disclosed impact from the MOVEit hack, including roughly 900 schools in the United States. Over 60 million individuals are believed to have been affected.

University System of Georgia (USG), which was using MOVEit to “transfer and store sensitive data”, is the latest education entity to disclose impact from the attack.

In a notification letter to the impacted individuals, a copy of which was submitted to the Maine Attorney General’s Office, USG revealed that Social Security numbers, dates of birth, bank account numbers, and tax documents that included tax ID numbers were stolen in the attack.

“The Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) have determined that data was acquired from the MOVEit platform by a cybercriminal group named Cl0p. The files and information obtained by this cybercriminal group will likely be published on its website,” USG said.

Although the data breach report has been listed on the Maine AGO’s website only this week, USG started sending the notification letters in mid-April, when it also posted an incident notice on its website.

USG is providing the affected individuals with one year of free credit monitoring and related services.

Advertisement. Scroll to continue reading.

Providing services across the state of Georgia, USG is composed of 26 higher education institutions, including research, comprehensive and state universities, state colleges, the Georgia Public Library Service, and the Georgia Archives.

Related: Kaiser Permanente Data Breach Impacts 13.4 Million Patients

Related: 1.3 Million Maine Residents Impacted by MOVEit Hack

Related: SEC Investigating Progress Software Over MOVEit Hack

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

People on the Move

Wendy Zheng named as CFO and Joe Diamond as CMO at cyber asset management firm Axonius.

Intelligent document processing company ABBYY has hired Clayton C. Peddy as CISO.

Digital executive protection services provider BlackCloak has appointed Ryan Black as CISO.

More People On The Move

Expert Insights