A Russian-linked cybercriminal group believed to be behind the hacks affecting companies around the world has posted a message aimed at the victims.

In other words, businesses affected by the MOVEit hack were told to contact the Cl0p ransomware group by June 14th or face the consequences.

In a message posted on a dark web leak site accessible via the Tor browser, the Cl0p gang accused companies using Progress’s MOVEit Transfer product of exploiting a software vulnerability to gain access to their data. I’m telling you.

Cl0p message
Part of a message posted on Cl0p’s leak website.

Unusual for an extortion request, and perhaps reflecting the potential for different companies to be affected by this flaw, the message asks affected companies to contact the extortionist.

Once contacted, negotiations will begin to determine the price of the stolen data deletion claim Cl0p. However, if no contact is made by June 14th, or if the ransom negotiations last too long, the data will begin to be published online.

Victims of the hack are believed to include the BBC, Aer Lingus, British Airways and the UK pharmacy chain Boots, all of which used the vulnerable MOVEit software to give Zellis a payroll management account. was entrusted with

Sign up for our free newsletter.
Security news, advice and tips.

Calling itself “FRIENDLY CLOP,” the hackers claim they have already erased all data related to government, city and police services because they “have no interest in releasing such information.”

Perhaps they are simply concerned about law enforcement being overly hostile…

Did you enjoy this article? Follow Graham Cluley on Twitter again Mastodon To read more of the exclusive content we post,

Graham Cluley is a cybersecurity industry veteran and has worked for many security companies since the early 1990s when he created the first version of Dr. Solomon’s Antivirus Toolkit for Windows. He is now an independent analyst, making regular media appearances and an international speaker on the subject of cybersecurity, hackers and online privacy.follow him twitter, MastodonBluesky, or email him.



Register now for our membership to gain access to our elite training program and fast forward your career today!


Subscribe my Newsletter for new blog posts, tips & new photos. Let's stay updated!

Security Blog

Blue Training Academy

Blue Training Academy was developed in 2018 as a educational and training facility for continuing education and certification courses. Blue Training Academy is an educational institution that allows for all sectors of the public and Criminal Justice field to gain ongoing training and education.

Copyright ©️ All rights reserved. | Blue Training Academy Blog