This week, it was confirmed that international law firm Jones Day had data stolen from cybercriminals and is a direct result of the wider data breach suffered by file-sharing service Accellion. The hacker, which goes by the name Clop, had uploaded much of the sensitive information on the dark web which may have included data on prominent clients like Donald Trump.
When contacted by reporters at VICE as to why they carried out the attack, the response given was “what do you think? financial of course.”
The first to notify the breach had occurred was the website DataBreach.net which posted images of the stolen files that had been posted by Clop on the Dark Web proving the attack had happened.
The attack stemmed from a zero-day vulnerability within Accellion’s legacy file-transfer system which was exploited and led to other big named companies to be impacted, including telecoms providers Optus, Singtel, and law firm Goodwin Procter LLP.
The site DataBreached.net was the first to report on the incident and published screenshots of stolen Jones Day files that the Clop group posted on the Dark Web as proof it has the goods. The group told DataBreaches.net it didn’t encrypt the files, just stole copies of information. The Clop crew also said Jones Day hasn’t responded to its requests.
Providing industry insight and advice are the following cybersecurity experts:
Martin Jartelius, CSO at Outpost24
So what we are seeing now are the effects of the Accellion intrusion from December, which has already been discussed in relation to for example Singtel and others. It’s an ext ..
Support the originator by clicking the read the rest link below.
