A SolarWinds software vulnerability came back to bite a U.K-based data capture and storage company; all signs point toward Cl0p ransomware. In a different streak, a German medical software provider appears to have exposed user credentials to ransomware actors. Furthermore, a new Pegasus-like spyware has been spotted spying on South Koreans. On that note, continue reading for the top ten highlights from the cybersecurity space.
01
British firm Stor-a-File disclosed a ransomware incident due to a security bug in SolarWinds' Serv-U FTP software. Meanwhile, another research found an uptick in Cl0p ransomware gang abusing the same flaw, implying its connection to the incident.
02
Germany-based Medatixx revealed it was hit by a massive ransomware attack rendering its operations useless and ineffective. User credentials may be at risk.
03
According to a Mimecast, the U.S. organizations top the chart—with an average of over $6 million—when it comes to ransom payments to cybercriminals. Canada and the U.K join the list with average ransoms of $5,347,508 and $850,000, respectively.
04
Taiwanese cyber cell claimed that its government agencies encounter around five million cyberattacks and probes a day with China accounting for nearly half of the attacks in a month.
05
New spyware called PhoneSpy has surfaced to infiltrate Android phones. Experts found 23 malicious apps disguised as legitimate ones to give attackers complete control over the targeted devices.
06
Trend Micro reported that the TeamTNT group continues to target Docker servers exposing Docker REST APIs for cryptomining purposes, under the campaign that was set off in October.
07
Another Trend Micro report detailed the activity of Void Balaur, a hacker-for-hire group active since the mid-2010s. It has claimed victims in IT firms, telecoms, as well as added activists, journalists, and religious leaders alike to its list.
08
Avast shared details on the new MasterFred banking trojan targeting credit cards of Netflix, Instagram, and Twitter users with custom fake login overlays.
09
Enterprise information management solutions provider OpenText signed a definitive agreement to acquire Zix, a developer of email encryption software, for $860 million.
10
Socure, a digital identity verification provider, raised $450 million in Series E round led by Accel and T. Rowe Price, with Bain Capital Ventures and Tiger Global also joining the round as new investors.
