---
schema_version: "secwatch.filing_event.v1"
accession: "0000350852-23-000090"
form_type: "8-K"
ticker: "CTBI"
cik: "0000350852"
company_name: "COMMUNITY TRUST BANCORP INC /KY/"
filed_at: "2023-08-11T23:59:59+00:00"
generated_at: "2026-06-11T15:48:41.416095+00:00"
event_type: "cyber"
sentiment: "negative"
materiality_score: 0.65
calibrated_materiality_score: 0.65
confidence: "high"
source: SEC EDGAR
---

# CTBI third-party MOVEit breach exposes customer data

## Summary
- On Aug 9, 2023, a third-party vendor notified CTBI that customer data was potentially accessed via the MOVEit vulnerability.
- CTBI does not use MOVEit internally; the vendor applied Progress Software's recommended patches.
- CTBI is notifying potentially impacted customers; incident did not affect ongoing operations.
- CTBI expects its cyber insurance to cover most costs related to the incident.

## SEC filing metadata
- accession: 0000350852-23-000090
- form_type: 8-K
- ticker: CTBI
- cik: 0000350852
- company_name: COMMUNITY TRUST BANCORP INC /KY/
- filed_at: 2023-08-11T23:59:59+00:00
- event_type: cyber
- sentiment: negative
- materiality_score: 0.65
- calibrated_materiality_score: 0.65
- confidence: high
- sec_items: 8.01
- EDGAR index: https://www.sec.gov/Archives/edgar/data/350852/000035085223000090/0000350852-23-000090-index.htm
- EDGAR primary document: https://www.sec.gov/Archives/edgar/data/350852/000035085223000090/cyberincident8k.htm

## Machine-readable alternates
- HTML: https://secwatch.observer/filing/0000350852-23-000090
- JSON: https://secwatch.observer/filing/0000350852-23-000090.json
- Plain text: https://secwatch.observer/filing/0000350852-23-000090.txt

This AI-assisted summary is a reading aid. Review the linked SEC EDGAR filing before relying on any specific claim.
