Content firewall provider Accellion has come to a settlement of $8.1m to bring to an end a lawsuit over a data breach that involved FTA, its legacy file sharing service.
Accellion recently changed its brand name to Kiteworks in October last year. The firm offers secure email services collaboration, content access, enterprise app sharing capabilities and file sharing.
According to Security Week, starting mid-December 2020, Accellion FTA was the target of a cyberattack that continued into January 2021 and resulted in the compromise of data pertaining to multiple Accellion customers.
The cyberattack was later attributed to Russia-based advanced persistent threat actor FIN11.
In May 2021, KPMG published a report that found Accellion had failed to notify customers of the zero-day vulnerability that was exploited in the December attack.
Furthermore, Accellion is facing claims that it failed to secure the sensitive information entrusted to it by customers according to settlement papers that have been filed in a California federal court show. The information is said to include dates of birth, names, medical information, social security numbers and drivers’ licence details.
Copyright © 2022 RegTech Analyst
Copyright © 2018 RegTech Analyst
