WeTransfer Incident Shares Transferred Files with Unintended Users -- Security Today

WeTransfer Incident Shares Transferred Files with Unintended Users

WeTransfer files were transferred to unintended users on June 16 and 17. The scope of the incident is not clear, but the company promptly logged out affected accounts and disabled the transfer links.

By Kaitlyn DeHaven
Jun 26, 2019

WeTransfer posted a security notice on June 21 informing users of a security incident they had discovered on Monday, June 17. In the incident, WeTransfer emails including file transfer links were sent to unintended e-mail addresses for two days – June 16 and 17.

After the company discovered the security incident, they logged the users out of their accounts and deactivated the links, making the files inaccessible. For some users, they reset their passwords. Then, they sent out emails to the affected users and posted the security notice on their website. WeTransfer has stated they do not know what caused the security incident.

There is a way to password-protect your transferred files on WeTransfer, ensuring that the end user is also the intended user, but it is not available on the free version of WeTransfer.

Jamie Brown, an affected user who received a notice from WeTransfer informing him that his files had been sent to unintended users, told Naked Security the files he was transferring were not overly confidential, but others may not have been so lucky.

“Thankfully we mostly use WeTransfer for sending and receiving brand photos for use on Chicmi.com – so they’re mostly heading into the public domain anyway, and the worst that might happen is an embargo being broken for an upcoming event,” Brown said. “However, I’m sure others are not so relaxed about it, bearing in mind the way the service is used.”

WeTransfer stated that they would let their users know as soon as they had an update on the cause of the situation, but that the scope of the incident will not be revealed until they have more information.

“We understand how important our users’ data is and never take their trust in our service for granted,” WeTransfer said in a statement. “We are still investigating the complete scope and cause of the incident, and will update further as soon as possible.”

About the Author

Kaitlyn DeHaven is the Associate Content Editor for the Infrastructure Solutions Group at 1105 Media.

Elite Educates Law Enforcement on Power of Public-Private Partnering
04/10/2025
Digimat S.p.A Selects DataKrypto’s FHEnom for Images™ to Enable Secure, High-Performance Processing of Encrypted Satellite Images
04/09/2025
Milestone Systems Acquires brigther AI
04/09/2025
Motorola Solutions to Acquire InVisit, Cloud-Based Visitor Management Solution Provider
04/08/2025
Axis Cloud Connect Marks One Year of Growth
04/02/2025
Hanwha Vision Delivers “Innovation Beyond Expectations” at ISC West 2025
04/02/2025
Genetec to Showcase Latest Innovations at ISC West 2025
04/02/2025
Milestone Systems Showcasing New Solutions at ISC West 2025
04/02/2025

Featured

2025 Security LeadHER Conference Program Announced

ASIS International and the Security Industry Association (SIA) – the leading membership associations for the security industry – have announced details for the 2025 Security LeadHER conference, a special event dedicated to advancing, connecting and empowering women in the security profession. The third annual Security LeadHER conference will be held Monday, June 9 – Tuesday, June 10, 2025, at the Detroit Marriott Renaissance Center in Detroit, Michigan. This carefully crafted program represents a comprehensive professional development opportunity for women in security this year. To view the full lineup at this year’s event, please visit securityleadher.org. Read Now
- Industry Events
Report: 82 Percent of Phishing Emails Used AI

KnowBe4, the world-renowned cybersecurity platform that comprehensively addresses human risk management, today launched its Phishing Threat Trend Report, detailing key trends, new data, and threat intelligence insights surrounding phishing threats targeting organizations at the start of 2025. Read Now
- Cybersecurity
NRF Supports Federal Bill to Thwart Retail Crime

The National Retail Federation recently announced its support for the Combating Organized Retail Crime Act of 2025. The act was introduced by Chairman Chuck Grassley, R-Iowa, Senator Catherine Cortez Masto, D-Nev., and Representative Dave Joyce, R-Ohio. Read Now
- Retail Loss Prevention
ISC West 2025 Brings Almost 29,000 Industry Professionals to Las Vegas

ISC West 2025, organized by RX and in collaboration with the Security Industry Association, concluded at the Venetian Expo in Las Vegas last week. The nation’s leading comprehensive and converged security event attracted nearly 29,000 industry professionals and left a lasting impression on the global security community. Over five action-packed days, ISC West welcomed more than 19,000 attendees and featured 750 exhibiting brands. Read Now
- Industry Events
- ISC West
Tradeshow Work Can Be Fun

While at ISC West last week, I ran into numerous friends and associates all of which was a pleasant experience. The first question always seemed to be, “How many does this make for you?” Read Now
- Industry Events
- ISC West

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.

Digimat S.p.A Selects DataKrypto’s FHEnom for Images™ to Enable Secure, High-Performance Processing of Encrypted Satellite Images

Webinars

Whitepapers

New Products

Camden CM-221 Series Switches

Camden Door Controls is pleased to announce that, in response to soaring customer demand, it has expanded its range of ValueWave™ no-touch switches to include a narrow (slimline) version with manual override. This override button is designed to provide additional assurance that the request to exit switch will open a door, even if the no-touch sensor fails to operate. This new slimline switch also features a heavy gauge stainless steel faceplate, a red/green illuminated light ring, and is IP65 rated, making it ideal for indoor or outdoor use as part of an automatic door or access control system. ValueWave™ no-touch switches are designed for easy installation and trouble-free service in high traffic applications. In addition to this narrow version, the CM-221 & CM-222 Series switches are available in a range of other models with single and double gang heavy-gauge stainless steel faceplates and include illuminated light rings.
Camden CV-7600 High Security Card Readers

Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure.
ComNet CNGE6FX2TX4PoE

The ComNet cost-efficient CNGE6FX2TX4PoE is a six-port switch that offers four Gbps TX ports that support the IEEE802.3at standard and provide up to 30 watts of PoE to PDs. It also has a dedicated FX/TX combination port as well as a single FX SFP to act as an additional port or an uplink port, giving the user additional options in managing network traffic. The CNGE6FX2TX4PoE is designed for use in unconditioned environments and typically used in perimeter surveillance.