Progress (WhatsUp Gold) Data Breach
Progress (WhatsUp Gold) experienced a data breach that was reported on September 16, 2024. Progress WhatsUp Gold contains a SQL injection vulnerability that allows an unauthenticated attacker to retrieve the user's encrypted password if the application is configured with only a single user.
Key Facts
- Organization
- Progress (WhatsUp Gold)
- Date Reported
- September 16, 2024
- Incident Type
- ransomware
- Industry
- Technology
- Severity Score
- 6/10
- Confidence Level
- high
- Tags
Source
View original source - External link to primary source documentation
Understanding ransomware Incidents
Ransomware attacks encrypt organizational data and demand payment for recovery. They often involve data exfiltration before encryption, enabling double extortion. Organizations should maintain offline backups and incident response plans.