Incidentally, both the e-mail and website contain details for contacting the attackers so as to get the published files removed, although there is little point once the information is out there.
Of course, the aim is to intimidate other victims. The hackers, it seems, took advantage of this convenient platform. The Accellion File Transfer Appliance (FTA) before FTA91240 allows local users to add an SSH key to an arbitrary group, and consequently gain privileges, via. Interestingly, the site belongs to the CL0P group, which specializes in ransomware, although in the attacks through the Accellion FTA vulnerabilities, the files were not encrypted. Among the purported visitors: all kinds of hackers and journalists able to cause even greater damage to a company’s infrastructure and reputation. onion site, and they claimed the website got tens of thousands of hits per day. The messages urged recipients to use the Tor browser to visit a. The attackers’ e-mail to employees, clients, partners, and competitors. The extent of the mailings and the sources of the addresses are not known for sure, but it seems the cybercriminals were trying to reach as many viewers as they could.
Recently, we registered mass e-mails aimed at compromising victims’ reputations in the eyes of employees, clients, and partners, as well as compet itors. Apparently, not all of the victims agreed to pay the ransom, so the attackers carried out their threat to share the data they’d stolen. Several high-profile press reports about the leaks followed. Nonetheless, intruders managed to steal the data of several Accellion FTA users. The vulnerabilities were closed, but January 2021 saw two more ( CVE-2021-27103 and CVE-2021-27104) uncovered and patched. In December 2020, the discovery of two vulnerabilities - CVE-2021-27101 and CVE-2021-27102 - in the solution enabled attackers to gain access to files uploaded to FTA devices. Twenty years old, the solution is due to be retired this year, and developers have long called for a migration to more modern products. The Accellion FTA is an network appliance companies deploy for quick and easy delivery of large files. We are not pleased to report that they were true to their word. Some cybercriminals used Accellion FTA vulnerabilities to snatch confidential data, using the threat of publication to extort ransom from the victims. Late last year, information surfaced online about attacks on companies using the outdated Accellion File Transfer Appliance (FTA). UC Berkeley was hacked via flaws in a 20-year-old legacy File Transfer Appliance sold by technology firm Accellion.
#ACCELLION FILE TRANSFER APPLIANCE PROFESSIONAL#
KasperskyPremium Support and Professional Services.KasperskyEndpoint Security for Business Advanced.KasperskyEndpoint Security for Business Select.The advisory was issued jointly with the cyber security authorities of Australia, New Zealand, Singapore, the US, and the UK.
#ACCELLION FILE TRANSFER APPLIANCE FOR ANDROID#
0 kommentar(er)
