Active Exploitation in Accellion File Transfer Appliance (FTA)

UPDATED: Accellion has announced End of Life for its FTA software effective April 30, 2021. For more information, please refer to https://www.accellion.com/sites/default/files/resources/fta-eol.pdf.

Accellion has issued a press release to address security incidents involving its File Transfer Appliance (FTA), following reports of several cases of exploitation of the vulnerabilities in the FTA worldwide.

Users of FTA are advised to disconnect the system to perform a thorough check for signs of compromise, and to reach out to Accellion Support if you require any assistance.

Users should also regularly check for updates and patch as soon as they are available, and monitor for unusual activities in their networks, such as abnormally large volume of outgoing network traffic from the FTA appliance to the Internet which may indicate symptoms of data exfiltration. 

References

https://www.accellion.com/company/press-releases/accellion-provides-update-to-recent-fta-security-incident/

https://www.guidepointsecurity.com/accellion-fta-targeted-by-file-downloading-web-shell/