Mandiant identifies group behind global zero-day attacks on Accellion legacy File Transfer Appliance product. Jones Day Law Firm, Kroger and Singtel among victims of attacks. 100 companies have been victims of the attack, with around 25 suffering significant data theft No ransomware was used in the attacks, though no ransomware was deployed. Mandiant found that a specific web shell, which it calls DEWMODE, was used to exfiltrate data from AcCellion FTA devices.
Source: https://threatpost.com/accellion-zero-day-attacks-clop-ransomware-fin11/164150/