Many of its clients had their personal data exposed in the security violation. Register your interest to stay informed and receive updates if this claim is taken forward by one of our partner law firms.
Join the Claim isn’t a law firm. We connect you with regulated UK firms that run group action claims. If one of our partner firms takes this case forward, we’ll share more details, including how to check your eligibility.
Some claims are regulated by the Financial Conduct Authority (FCA). This claim is not currently regulated by the FCA.
Register your interest
Overview
MOVEit claims to provide a “secure environment for your most sensitive files”. But in 2023, a data breach at MOVEit affected businesses around the world.
Because it used MOVEit, UK payroll company Zellis was one of those impacted. When the breach happened, Zellis found out that many of its clients – including DHL – had their personal data exposed in the security violation. Other UK organisations are also involved. In total, thousands of people across the UK are now at risk because of the MOVEit breach. Current and former DHL employees are affected by the data hack.
Tens of thousands of people could have been affected by the MOVEit (Zellis) data breach.
We are monitoring the situation closely. Register your interest and we’ll keep you updated if one of our regulated UK partner law firms is able to take this claim forward.
MOVEit – At a glance
Take a moment to answer a few simple questions so we can understand your connection and keep you updated.
Share your details so we can keep you informed if any updates become available.
If a partner law firm takes this claim forward, we’ll let you know the next steps and how to join.
In May 2023, ransomware gang Clop began abusing a vulnerability in Progress Software’s MOVEit file transfer tool. The widespread attack saw data stolen from organisations worldwide. The breach is thought to be the biggest hack of 2023.
The potentially compromised data includes employee bank, contact details, and NI numbers. Affected organisations include payroll provider Zellis. Eight Zellis clients are said to be impacted by the data breach.
Affected companies should be in touch to notify employees and customers if they are involved in this breach. If you do not receive this notification, it is unlikely that you are affected.
It’s complicated! While MOVEit was hacked, organisations are responsible for the security of their personal data. So Zellis, and Zellis’ clients could be in trouble. When considering what action to take, the Information Commissioner’s Office (ICO) will look at the security measures of all the affected organisations and how they share data with third parties.
We cannot say how much compensation you might get if you win your data breach case. Each claim is based on its merits and your solicitor will work to get the compensation owed to you.
A group action claim allows people affected by the same issue to take action together. This strength in numbers helps stand up to big organisations. Join the Claim helps connect people with law firms so these actions have real impact.
June 2025
GreyNoise, a trusted threat intelligence firm, flagged a surge in scanning activity across the internet, all aimed at MOVEit servers. They warn that someone’s looking hard for a new vulnerability.
November 2024
More victims of the MOVEit data breach came to light after an anonymous threat actor leaked data stolen in the attack on the dark web. Amongst others, Amazon, confirmed two million of its employees had their data leaked. The breach does not affect Amazon customers.
July 2023
DHL confirmed that it was impacted by the MOVEit data hack. DHL launched an investigation into the breach which impacted its UK operations and employees.
June 2023
British media reported that several UK companies, including Zellis, were impacted by the cyber security attack. Several other companies came forward to say they were also involved. The National Cyber Security Centre published an update on the MOVEit vulnerability and data extortion incident. At least one law firm considered filing a class action lawsuit after the mass data hack.
May 2023
Hackers exploited a vulnerability in the MOVEit file transfer app. Progress Software, which owns the app, admitted the data hack.
We’ll provide more updates on the MOVEit data breach as they occur.
If you are an employee or customer of DHL, British Airways, Boots, The BBC, Aer Lingus, Ofcom, Ernst & Young, Tfl, or Shell, your data might have been accessed.
Register to stay updated and we’ll let you know if a partner law firm takes this claim forward.
We connect consumers with their legal dream teams to ensure they get the compensation and support they deserve.
Join the Claim is not a law firm. We connect individuals with top law firms for group action claims, and our service is free to use. While we may receive a fee from the law firms we introduce you to, this will not affect your costs or compensation. We are not responsible for the advice or services provided by these firms. Please note, nothing on this website is legal advice, and while we check claim eligibility, we cannot guarantee a law firm will accept a case.
Join the Claim is a registered trading name of Big on Media ltd. Big on Media is registered in the United Kingdom under licence number 09878028 with its registered office located at Big on Media, 32 Eyre Street, Sheffield, England, S1 4QZ
© Join the Claim All Rights Reserved |
