It appears that SIU was impacted by the Accellion breach that has been in the news a lot this past month. SIU is the first entity, however, to disclose that the incident impacted protected health information (PHI), although as DataBreaches.net reported, this site found what might be PHI in Jones Day’s dumped data. SIU does…
Search Results for: accellion
The Accellion breach also impacted Qualys; threat actors start dumping files
As I noted yesterday on Twitter, Qualys was added to threat actor CLOP’s leak site, raising the question as to whether the firm had been an Accellion client. They had. Qualys issued a statement later yesterday. It said, in part: Qualys has confirmed that there is no impact on the Qualys production environments, codebase or…
Mandiant issues final report on its investigation into Accellion breach
Yesterday, Mandiant issued its final report on its investigation into the Accellion data breach that impacted a number of its big clients including Jones Day law firm, SingTel, Bombardier, Goodwin Procter, the Transport for NSW, the New Zealand Reserve Bank, and others. You can find the report here (pdf). And while the investigation may be…
CISA Releases Joint Cybersecurity Advisory on Exploitation of Accellion File Transfer Appliance
The cybersecurity authorities of Australia, New Zealand, Singapore, the United Kingdom, and the United States have released Joint Cybersecurity Advisory AA21-055A: Exploitation of Accellion File Transfer Appliance. Cyber actors worldwide have exploited vulnerabilities in Accellion File Transfer Appliance to attack multiple federal, and state, local, tribal, and territorial government organizations as well as private industry organizations…
CLOP adds more firms to their leak site — but are they all Accellion clients? (UPDATED)
The threat actors known as “CLOP” have added three more firms to their leak site: Bombardier, Pentair, and CSA Group. All three firms have revenues that make them lucrative targets for “big game hunting.” But were all of these firms clients of Accellion, as were Jones Day and some other firms listed on CLOP’s leak…
Transport for NSW confirms data taken in Accellion breach
Aras Barbaschow reports: Transport for New South Wales (TfNSW) has confirmed being impacted by a cyber attack on a file transfer system owned by Accellion. Read more on ZDNet.