Incident responders say, though, that Accellion was slow to raise the alarm about the potential risk to FTA users. “The Accellion zero days were particularly damaging because actors were mass-exploiting this vulnerability quickly, and the severity of this wasn't being communicated from Accellion,” says David Kennedy, CEO of the corporate incident response consultancy TrustedSec... The company faces multiple lawsuits in Northern California and Washington state court as a result of the widespread intrusions... Full story at https://www.wired.com/story/accellion-breach-victims-extortion/ To paraphrase Watergate: What did UC know and when did it know it?
26
UCLA Faculty Association Blog: 2nd Quarter 2021
