HC3 TLP White Analyst Note: Accellion File Transfer Appliance Compromise

February 23, 20221

Accellion, a managed service provider focused on collaboration and secure file sharing, was recently compromised in an attack which has impacted their customers. It is believed that up to 100 of their customers were part of a secondary attack and up to 25 of those had a significant amount of their data stolen. The root cause of the breach was the exploitation of multiple vulnerabilities in their legacy File Transfer Appliance (FTA).  View the entire report under Key Resources.

Key Resources

Related Resources

Letter/Comment
AHA Responds to CISA Proposed Rule on Cyber Incident Reporting Requirements
Public
Advisory
HHS Issues Alert on Critical Vulnerability in ‘MOVEit,’ File Transfer Platform Used by Health Care Sector
Public
Special Bulletin
AHA Helps Secure New Cybersecurity Resources from Microsoft and Google to Assist Rural Hospitals
Public
Advancing Health Podcast
How to Survive a Cyberattack with Scripps Health: Part Two
Public
Special Bulletin
HHS Authorizes UnitedHealth Group to Make Breach Notifications on Behalf of Providers
Member
Advancing Health Podcast
How to Survive a Cyberattack with Scripps Health: Part One
Public