The Office of the Washington State Auditor’s (SAO) announced that one of its service providers, Accellion, had suffered a data breach in December 2020. Accellion did not notify SAO about the breach until January 25th, according to a government official. While this breach’s scope is still being investigated, it is estimated that 1.6 million unemployment claims were exposed due to the breach. The impacted information includes Social Security Numbers (SSNs) and/or driver’s license number, bank account and routing numbers, and place of employment. According to BleepingComputer, the cause of the breach was an exploited zero-day vulnerability in Accellion’s File Transfer Agent (FTA) solution in mid-December, and a patch was deployed soon thereafter.
When evaluating a Managed Detection & Response (MDR) service there are 5 critical components that