Public Notice: State Auditor’s Office efforts regarding Accellion data security breach As reported, a security breach at Accellion, a third-party file transfer service impacted the Washington State Auditor’s Office (SAO) in late December 2020. SAO first learned about the breach in mid-January 2021. Since that time, SAO has taken steps to identify the data files…
Category: Subcontractor
County auditor states CIC software for timeclock has been down since last Tuesday
Danielle Linton-Hatfield reports: During a regular Saline County Commission meeting held on Thursday, March 25, Auditor Karlin Breshears explained the CIC software server for the Saline County Courthouse has been down since last Tuesday, March 16. […] Northern Commissioner Stephanie Gooden estimated there are 11-15 counties CIC provides services to. “They have municipalities and school…
Solairus Aviation Notice Regarding Avianis Data Security Incident
PETALUMA, Calif., March 23, 2021 /PRNewswire/ — Today, Solairus Aviation, a US-based aviation services company whose core business is assisting owners with the safe, reliable, and economical operation of their aircraft, announced that it identified and addressed a data security incident related to one of its third-party vendors. On December 23, 2020, Solairus was notified by a third-party vendor,…
Threat actors leak files with protected health information from U. Miami
In December and January, threat actors successfully exploited multiple vulnerabilities in an older file transfer system by Accellion. A number of Accellion’s clients subsequently found themselves on the receiving end of extortion demands to either pay the threat actors, or have their data dumped publicly. A number of firms apparently refused to pay, and their…
Vengeful IT Contractor Sentenced to Two Years for Deleting Carlsbad Company’s Microsoft User Accounts
March 22 — Deepanshu Kher was sentenced today in federal court to two years in prison for accessing the server of a Carlsbad Company and deleting over 1,200 over the company’s 1,500 Microsoft User Accounts. According to court documents, Kher was employed by an information technology consulting firm from 2017 through May 2018. In 2017,…
Transport NSW documents posted on dark web after Accellion hack
Anton Nilsson reports that threat actors who have been dumping files from Accellion clients have started dumping files from Transport NSW: Massive amounts of sensitive NSW government documents have been published online by hackers attempting to extort the authorities for cash. The sporadic leaks to the dark web have continued in the past few days…