Weekly Intelligence Summary 12 March

March 12, 2021

A new round of software attacks has raised another red flag concerning supply-chain security and the prevalence of third-party supply-chain targeting. Cybercriminals exploited four zero-day vulnerabilities in Accellion’s File Transfer Appliance (FTA) software, which was nearing End-of-Life (EoL) status, to access Accellion customers’ data. The attacks allegedly began in December 2020, and in the following two months victims received ransom notes from the cybercriminals who operate the “Clop” ransomware. The notes stated that the victims’ data would be exposed unless payments were made. These attacks mark a technical advancement for cybercriminal groups: Supply-chain attacks and exploitation of zero-day vulnerabilities are common, but are more typically the work of state-sponsored groups. 

Previous Report
Weekly Intelligence Summary 19 March
Weekly Intelligence Summary 19 March

Four zero-day vulnerabilities in Microsoft Exchange Servers have been linked to more than 30,000 cyber atta...

Next Report
Weekly Intelligence Summary 05 March
Weekly Intelligence Summary 05 March

The French National Cybersecurity Agency (ANSSI) identified a new “Ryuk” ransomware variant that has the ca...

Want To Try Our Digital Risk Protection Tool?

Get Started Free