We were alerted to a critical vulnerability in the web interface of MOVEit, the application we use to share files with you, that could lead to potential unauthorized access to that environment.

This web interface issue exists across all of MOVEit’s clients, not just Cenlar. We have scanned our environment for Indicators of Compromise to this vulnerability and found no exposed data.

The vulnerability exists solely on the HTTP/HTTPS web interface, and does not affect any automated file exchanges you may have with us through MOVEit (sFTP/FTPs). All automated transfers are expected to continue as normal. Manual actions using the web interface via HTTP/HTTPS may be impacted.

As a precaution, Cenlar is taking action to whitelist IP addresses and install additional software on the MOVEit Transfer server.

If you have any issues or are impacted, please contact the Client Service Desk at (888) 341-3882 or cenlarhelpdesk@cenlar.com.