Maximus, Inc. announced a cybersecurity incident involving a critical zero-day vulnerability in its file transfer application, potentially impacting personal information of 8 to 11 million individuals, with an estimated expense of $15 million for investigation and remediation activities.