Qualys Says Breach Limited To Third-Party Vendor

Qualys Says Breach Limited to Third-Party Vendor

Cloud security company Qualys says its follow-up investigations on the data breach it suffered in late 2020 and early 2021 have confirmed that it was restricted to customer data stored on third-party service provider Accellion’s file transfer system.

The company also shared intelligence that the threat actors behind the incident are trying to make the exposed data set look larger than it actually is.

According to the update posted on the Qualys website, CISO Ben Carr has said an independent, third-party forensic company had verified their initial determination that the attack did not jump from Accellion’s file transfer appliance server to Qualys’ larger corporate network.

To Read More: SCMagazine