Progress Patches MOVEit Automation Flaw Enabling Authentication Bypass

Progress Software has patched critical vulnerabilities in MOVEit Automation, including an authentication bypass flaw rated CVSS 9.8, that could allow hackers to gain unauthorized access and control. The update fixes CVE-2026-4670 and CVE-2026-5174, protecting users from potential data exposure and administrative…

https://osintsights.com/progress-patches-moveit-automation-flaw-enabling-authentication-bypass?utm_source=mastodon&utm_medium=social

#MoveitAutomation #AuthenticationBypass #Cve20264670 #Cve20265174 #ManagedFileTransfer

Progress Warns of MOVEit Automation Authentication Bypass Flaw

Progress Software has patched a critical authentication-bypass flaw in its MOVEit Automation product, and is strongly urging users to upgrade to the latest version to avoid low-complexity attacks by remote threat actors. Upgrading to version 2025.1.5, 2025.0.9, or 2024.1.8 and above will fix the vulnerability.

https://osintsights.com/progress-warns-of-moveit-automation-authentication-bypass-flaw?utm_source=mastodon&utm_medium=social

#MoveitAutomation #AuthenticationBypass #Cve20264670 #ManagedFileTransfer #ProgressSoftware

Two of the most popular managed file transfer solutions on the market have been attacked this year, impacting hundreds of organisations and resulting in the data of millions of people being compromised.

We have put together a quick overview of the incidents and actions for business leaders in our latest risk advisory.

https://cydea.com/blog/advisory-managed-file-transfer-software/

#PositiveSecurity #FileTransferSoftware #ManagedFileTransfer #RiskAdvisory #MoveIt