WASHINGTON – A former contractor with the U.S. Air Force pleaded guilty in the U.S. District Court, Southern District of Ohio today to illegally taking approximately 2,500 pages of classified documents. Izaak Vincent Kemp, 35, of Fairborn, was charged on Jan. 25, 2021, by a Bill of Information. According to court documents, Kemp was employed…
Category: Subcontractor
French Regulator Lambasts Health Firms Over Mass Data Leak
Helene Fouquet reports: France’s privacy watchdog said it’s investigating the leak of sensitive health data on half a million people and said the companies involved could face heavy penalties if they don’t come forward with details of the breaches. The leaks were of “particularly significant magnitude and severity,” the CNIL said in a statement. Hackers may have…
CISA Releases Joint Cybersecurity Advisory on Exploitation of Accellion File Transfer Appliance
The cybersecurity authorities of Australia, New Zealand, Singapore, the United Kingdom, and the United States have released Joint Cybersecurity Advisory AA21-055A: Exploitation of Accellion File Transfer Appliance. Cyber actors worldwide have exploited vulnerabilities in Accellion File Transfer Appliance to attack multiple federal, and state, local, tribal, and territorial government organizations as well as private industry organizations…
Fears grow data hacked from Reserve Bank may be leaked by CLOP ransomware group
Tom Pullar-Strecker reports: A ransomware gang appears to be releasing confidential data obtained from the hack of customers of US software company Accellion, raising fears that New Zealand banks may be next to have data exposed. The Reserve Bank admitted it had been subject to a serious data breach in January, which occurred when a…
Transport for NSW confirms data taken in Accellion breach
Aras Barbaschow reports: Transport for New South Wales (TfNSW) has confirmed being impacted by a cyber attack on a file transfer system owned by Accellion. Read more on ZDNet.
FireEye and Accellion provide more details on attack
Andrew Moore, Genevieve Stark, Isif Ibrahima, Van Ta of FireEye write: Starting in mid-December 2020, malicious actors that Mandiant tracks as UNC2546 exploited multiple zero-day vulnerabilities in Accellion’s legacy File Transfer Appliance (FTA) to install a newly discovered web shell named DEWMODE. The motivation of UNC2546 was not immediately apparent, but starting in late January 2021, several organizations…