Assessment Description and Instructions
This assessment requires students to critically analyse a recent cybersecurity incident, conduct in-
depth research, and design a practical forensic response plan. The focus will be on applying cyber
forensic investigation techniques to understand the cause, impact, legal implications, and mitigation
strategies related to the case study. The assessment will be divided into two components
1. Assessment 2 (a) – Group Report (3000 + 10% words) (20%)
2. Assessment 2 (b) – Group Presentation (10-15 slides & 10-minute recorded presentation)
(10%)
Case Study: MOVEit Data Breach (2023)
In May 2023, Progress Software’s MOVEit Transfer file-sharing tool was exploited by the ClOp
ransomware group, leading to one of the largest data breaches of the year. The attackers exploited
a zero-day vulnerability,
allowing them to exfiltrate sensitive data from goverment agencies,
businesses, and financial institutions.
The breach impacted hundreds of organisations, including Shell, British Airways, U.S. Department
of Energy, and multiple banks, exposing personal data, financial records, and corporate documents.
The attack underscored vulnerabilities in third-party file transfer systems, regulatory challenges, and
the growing risk of supply chain cyber threats.
Your task is to analyse the MOVEit breach from a cyber forensic perspective and develop a detailed
response and mitigation plan
Case Study: MOVEit Data Breach (2023) In May 2023, Progress Software’s MOVEit Transfer file-sharing tool was exploited by the ClOp ransomware group, leading to one of the largest data breaches of the year. The attackers exploited