Cl0p attacks FIS Global
The Cl0p Ransomware Gang Attacks FIS Global
The Cl0p ransomware gang has attacked FIS Global. FIS Global, formerly known as Fidelity National Information Services, is a global financial technology company that provides a wide range of services and solutions to the financial industry. With headquarters in Jacksonville, Florida, FIS operates in over 130 countries and serves clients in banking, insurance, wealth management, and other financial sectors.
Cl0p posted FIS Global to its data leak site on June 29th but provided no further details other than claiming “the company doesn’t care about its customers, it ignored its security!” Cl0p is a major Ransomware-as-service (RaaS) platform first observed in 2019. Cl0p is a dangerous ransomware family because it has advanced anti-analysis capabilities and anti-virtual machine analysis to prevent investigations in an emulated environment like those commonly used by security tools.
Why Cl0p is Particularly Dangerous
Cl0p is one of just a handful of threat actors that have developed a Linux version. While Linux has a tiny footprint in desktop computing, it runs ~80% of web servers and a substantial portion of embedded devices used in the healthcare field – and this means that Cl0p is likely actively recruiting new talent to help improve their platform and expand the scope of what and whom they can attack.
See Halcyon in action
Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!