While WeTransfer's customers would undoubtedly be surprised and upset by this development, some may find their views on using cloud software for the transfer of sensitive data too risky, now justified. However, it is important to point out that at this stage we do not have any information to confirm this.įor more information about this security incident and how it develops, please refer to WeTransfer's security notice on their website. This is a curious approach to the issue they have suffered, with some commentators and websites pointing out that this could be a sign of something more sinister, such as a network breach. Not only does this constitute a violation of the GDPR, depending on the content of the files but is highly embarrassing for WeTransfer as they acknowledge that they have no idea as to how this has happened.Īs a result of this problem, WeTransfer decided to log some user accounts out and initiate a reset password process. Letting them know that between the 16th and 17th of the same month, some files sent by users of the system had their files sent to the wrong recipient. On the 21st of June 2019, WeTransfer started to send security incident email warnings to their customers. Today we heard some news which had passed relatively quietly through the usual media outlets, despite it being highly embarrassing for the cloud-based managed file transfer vendor WeTransfer.