State of Illinois victim of MOVEit vulnerability attack

Illinois state government was targeted as part of the global ransomware attack, believed to have exploited a vulnerability in the widely used file transfer program MOVEit.

Following the attack on May 31, the Department of Innovation & Technology swiftly disconnected affected systems, engaged their security incident response team for forensic analysis, and collaborated with the global cyber community to identify the attackers' fingerprints and assess the scope of the attack on Illinois' systems.

They contained the attack within three hours, but efforts are underway to determine the full extent of the intrusion and the number of individuals impacted.

No details were provided as to the number of affected individuals nor types of exposed data.

The CL0P crime group, beleived to be behind the attack has threatened to dump stolen data if victims do not negotiate a ransom by June 14. This attack is considered significant, and previous instances of ransomware attacks have targeted the Illinois state government, including the state attorney general's office. The government is working to strengthen its cybersecurity programs and practices to mitigate such risks in the future.