Skip to content

Accellion to retire product at the heart of recent hacks

Posted by: GuidePoint Security

< 1 min read

February 11, 2021 – Article posted on ZDNET

US cloud service provider Accellion has announced the end-of-life for its FTA product after the software has been abused in recent attacks to breach tens of companies and government agencies across the world since December 2020

Developed in the early 2000s, Accellion’s FTA was among the first products of its kind to provide a simple way to share large files.

Created long before the age of cloud-based products like Box, Dropbox, Google Drive, and OneDrive, companies would buy an FTA license, install the software on their own servers, and use it to allow employees and customers to store and share large files that couldn’t be sent via email.

While Accellion eventually developed better products, such as Kiteworks, which superseded FTA in features and security, many FTA appliances remained in use across thousands of companies and government organizations across the world, even to this day…

…According to a report from Guide Point Security, the attacker(s) appears to have been using an SQL injection to install a web shell and use this initial access to steal files stored on the FTA appliance.

Read More HERE.

Categories: News
Tags:GRIT

GuidePoint Security

Navigating Identity and Access Management in a Cloud-Based World
Join our expert panel as we delve into the critical strategies, technologies, and best practices for successful Cloud Security and IAM integration.
Watch Now

Related Articles

View All

  • Application Security
RACE Conditions in Modern Web Applications
Posted by: Austin Turecek
Read More 8 min read
  • Blog
Cybersecurity Awareness Month: Tackling the Unsustainable Skills Challenge in Cybersecurity and Observability
Posted by: Ben MartinMooney
Read More 3 min read
  • GRIT Blog
Risky Recovery: Ransomware “Decryption” Scams Remain in 2024
Posted by: Justin Timothy
Published 09/19/24, 09:00am
Read More 8 min read