Ransomware attack on software manager hits 200 companies – .

Ransomware attack on software manager hits 200 companies – .

According to cybersecurity firm Huntress Labs, a successful ransomware attack against a single company spread to at least 200 organizations, making it one of the largest waves of criminal ransomware in history.

The attack, first revealed on Friday afternoon, is believed to be affiliated with the prolific REvil ransomware gang and perpetuated by Kaseya, an international company that remotely controls programs for companies that in turn operate internet services for businesses.

Kaseya announced Friday afternoon that she had been attacked by hackers and warned all of her customers to immediately stop using her service.

At least four of Kaseya’s immediate customers have been hacked, said John Hammond, senior security researcher at Huntress, who is contributing to Kaseya’s response.

Since these Kaseya customers run countless businesses, it’s unclear how many will fall victim to ransomware over the weekend, but the Huntress count is already around 200, Hammond said, and that number. should increase.

The timing, just before the July 4th weekend, is unlikely to be a coincidence. Ransomware hackers often schedule their attacks to start at the start of the holidays or the weekend, as this minimizes the number of cybersecurity professionals who might be able to quickly jump in and stop the malware from spreading.

The malware used to encrypt victims’ computers appears to be similar to the type normally used by REvil, a ransomware gang largely made up of Russian speakers, several researchers have found. In the past, REvil has attempted “supply chain” compromises, where a hacker attacks a target connected to multiple organizations, in the hope that a successful compromise will lead to many more.

The US Agency for Cybersecurity and Infrastructure Security announced Friday evening that it was “taking steps to understand and combat” the attack.


Please enter your comment!
Please enter your name here