The US Securities and Exchange Commission (SEC) will not bring charges against Progress Software over the MOVEit software supply chain attack that exposed the data of millions of people since 2023. In an August 6 Form 8-K, a document that US public companies must file with the SEC to announce significant events that shareholders should know about, Progress Software said the Commission has concluded its investigation into its handling of the exploitation of a MOVEit Transfer zero-day vulnerabilities in 2023.

Source: Infosecurity