Exploit: Third Party Data Breach
QIMR Berghofer Medical Research Institute: Medical Research Facility
Risk to Small Business: 1.802 = Severe
Investigators handling a breach at QIMR Berghofer Medical Research Institute have announced that certain data stored in a file-sharing system from third-party service provider Accellion has been improperly accessed. Officials say that they were told that their data had been impacted by a breach at Accellion in December 2020, and subsequently discovered that around 4% of their data held by Accellion had been compromised. QIMR Berghofer said that it used Accellion’s services to share data related to clinical trials of anti-malaria drugs.
Individual Risk: No sensitive personal or financial information was announced as part of this incident, but the investigation is ongoing.
Customers Impacted: Unknown
How it Could Affect Your Customers’ Business: Third party risk is everywhere, and as the world grows more interconnected with more outsourcing of things like data storage, every company must be cautious about protecting itself against third party risk.