Crowe LLP, a global accounting and tax advisory firm, has confirmed that it was impacted by the Cl0p MOVEit breach. However, the company claims that the number of compromised clients was remarkably low due to their quick response in disabling access and applying patches to the MOVEit file transfer system.
Crowe engaged external experts to conduct a thorough investigation and has notified less than 100 impacted clients.
The Cl0p ransomware gang, known for their attacks on various organizations, targeted the MOVEit file transfer system, impacting numerous companies worldwide. While major financial institutions like ING Bank and Deutsche Bank were significantly affected, Crowe appears to have experienced a relatively minor impact. The Cl0p group has expanded their victim list to over 150 companies, including PWC, Ernst & Young, Sony, and Shell Global.
Experts anticipate that the number of victims from the MOVEit attacks will surpass previous similar incidents. The compromised system is widely used by thousands of companies and their trusted third parties, amplifying the impact of the attacks. The ongoing investigation into the Cl0p gang’s activities highlights the urgent need for robust cybersecurity measures to defend against ransomware attacks and protect sensitive data.
The Crowe LLP case serves as an example of the importance of swift response and proactive security measures in mitigating the impact of cyberattacks.
By promptly disabling access, applying patches, and engaging external experts, Crowe was able to limit the number of affected clients and protect their data. The incident underscores the ongoing threats posed by ransomware groups and the need for organizations to remain vigilant and prioritize cybersecurity to safeguard against future breaches.