• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Accellion Reaches $8.1m Data Breach Settlement

You are here: Home / General Cyber Security News / Accellion Reaches $8.1m Data Breach Settlement
January 17, 2022

Californian technology enterprise Accellion Inc has reached an $8.1m settlement to solve a lawful claim relating to a data breach in December 2020.

The course action lawsuit was filed on behalf of victims whose personal facts was uncovered in the course of a cyber-attack on Accellion’s file transfer appliance (FTA).

Accellion had been employing the FTA for a lot more than 20 several years to securely share information deemed way too sensitive or big to be sent more than email. Before the cyber-attack transpired, Accellion actively phased out the FTA and inspired its consumers to use a freshly formulated file transfer alternative named Kiteworks. 

✔ Approved From Our Partners
AOMEI Backupper Lifetime

Protect and backup your data using AOMEI Backupper. AOMEI Backupper take secure and enxrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper will never be worried about loosing your data anymore.

Get AOMEI Backupper with 72% discount from an authorized seller: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


Four months in advance of the legacy file transfer resolution was due to be retired on April 30 2021, it was attacked by two advanced persistent threat (APT) teams connected to FIN11 and the CLOP ransomware gang.

By exploiting unpatched vulnerabilities in the FTA, the attackers were being in a position to acquire access to the files of Accellion’s purchasers from which they exfiltrated a sizable sum of facts.

Sensitive details most likely compromised and stolen in the incident involved names, speak to facts, dates of birth, Social Security figures, driver’s license figures and healthcare info.

Several Accellion consumers ended up impacted by the breach, such as Shell, The College of California, Stanford University School of Medicine, Bombardier, University of Miami Wellbeing, Trillium, Neighborhood Health Plan and Kroger.

Accellion determined a zero-working day vulnerability in the products in mid-December 2020 and launched a patch to deal with the flaw. By February 2021, four additional vulnerabilities related with the platform were disclosed and issued CVEs.

The course motion lawsuit accused Accellion of failing to put into practice and manage suitable details security techniques to shield its clients’ delicate data and failing to detect vulnerabilities in the security of its FTA. Plaintiffs also alleged that Accellion failed to disclose the inadequacy of its security procedures.

According to documents filed in Californian federal court, Accellion accepts no legal responsibility for the breach and has denied all of the allegations. The tech enterprise has proposed a settlement that involves $8.1m to go over the claims, notices and administration charges of Accellion FTA users.


Some areas of this post are sourced from:
www.infosecurity-magazine.com

Previous Post: «Cyber Security News Chrome Limits Websites’ Direct Access to Private Networks for Security Reasons
Next Post: Nova Scotia Seeks to Improve Cyber-Bullying Law Cyber Security News»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • Sioux Falls Funds DSU Cybersecurity Lab
  • ‘CryptoRom’ Crypto-Scam is Back via Side-Loaded Apps
  • Irish Watchdog Fines Meta $19m Over Data Breach
  • Avast Merger Raises Competition Concerns
  • Linux botnet spreads using Log4Shell flaw
  • Another Destructive Wiper Targets Organizations in Ukraine
  • New “B1txor20” Linux Botnet Uses DNS Tunnel and Exploits Log4J Flaw
  • New Infinite Loop Bug in OpenSSL Could Let Attackers Crash Remote Servers
  • FBI, CISA Warn of Russian Hackers Exploiting MFA and PrintNightmare Bug
  • Unpatched RCE Bug in dompdf Project Affects HTML to PDF Converters

Copyright © TheCyberSecurity.News, All Rights Reserved.