"FireEye IDs Hacking Group Suspected in Accellion, Kroger Breach"

Mandiant, a division of the security vendor FireEye, has identified UNC2546 as the hacking group behind the recent data breach suffered by the software firm Accellion, which impacted many corporations, law firms, and other organizations. Accellion recently announced that UNC2546 had exploited multiple vulnerabilities contained by its software to install malware. The hacking group infiltrated an Accellion tool to collect information from the company's clients. From there, the group contacted victims and threatened to publish their data. The breach faced by Accellion involved the exploitation of a zero-day vulnerability to infiltrate the Palo Alto-based cloud company's secure file transfer application (FTA). According to FireEye, UNC2546 appears to be financially motivated, as it has sent extortion emails to several organizations since late January 2021. Kroger recently admitted that some of its customers might have had their data compromised because of the Accellion incident. The supermarket chain revealed that the thieves might have stolen names, phone numbers, Social Security numbers, and medical history information. In response, Kroger has discontinued the use of services from Accellion. This article continues to discuss the Accellion data breach, the impact of the breach on other organizations, and how this incident compares to the hack against the US federal contractor SolarWinds. 

CyberScoop reports "FireEye IDs Hacking Group Suspected in Accellion, Kroger Breach"

 

Submitted by Anonymous on