The Clop ransomware gang has identified 59 organizations it allegedly breached using a vulnerability in Cleo's file transfer software. The gang threatened to release stolen data on January 18 unless their ransom demands are met. Cleo's products, including LexiCom, VLTransfer, and Harmony, were targeted after a flaw was disclosed in October 2024. Some companies, including Covestro, confirmed unauthorized access but disputed the extent of the breaches. Others, like Hertz and Linfox, denied any impacts from the attacks. The situation remains fluid as more victims may be revealed soon.