State-sponsored hackers have exploited the ubiquity of SolarWinds software to target US government agencies. Top 10 most exploited vulnerabilities from 2020 are SMBGhost, Zerologon, and SIGRed. Kobalos has been attacking supercomputers ‘ high performance computer (HPC) clusters ‘ as well as other targets such as a large Asian ISP, a North American endpoint security vendor, and several privately held servers. A new trend emerged: ransomware victims who were unwilling or unable to pay the ransom were faced with the threat of their sensitive information being exposed.
Source: https://www.helpnetsecurity.com/2021/02/07/week-in-review-top-10-most-exploited-vulns-smb-ransomware-extortion-patch-tuesday-forecast/