Cybersecurity firm Qualys is the latest victim to have suffered a data breach after a zero-day vulnerability in their Accellion FTA server was exploited to steal hosted files. Yesterday, the Clop ransomware gang posted screenshots of files allegedly belonging to Qualys. The leaked data includes purchase orders, invoices, tax documents, and scan reports. It is unknown if Clop sent ransom notes to the cybersecurity firm, but other victims have received them in the past. Qualys has since decommissioned the server, with Shodan showing it last active on February 18th, 2021.
Source: https://www.bleepingcomputer.com/news/security/cybersecurity-firm-qualys-is-the-latest-victim-of-accellion-hacks/