Ransomware group targets Kaseya in colossal attack

• 09 Jul 2021
• Lisa

• News
• The business continuity environment
• 0

  Comment

Miami based MSP Service provider was the latest victim of ransomware, compromising the data of small and medium sized businesses

Software Vendor Kaseya was the first target to be hit by REvil ransomware in a supply chain focused attack, compromising the data of up to 1,500 customers globally. Their VSA IT management software, was the primary target for attackers, who used the VSA server to deploy ransomware.

On July 2, at 2pm, Kaseya was warned of a potential attack and immediately shut down all access to software. CEO Fred Voccola, told the Associated Press that the estimated number of victims are in the low thousands, mostly small businesses like “dental practices, architecture firms, plastic surgery centers, libraries, things like that”.

Kaseya said the company was proactive in its mitigation efforts to ‘minimize the impact to critical infrastructure’. Many of Kaseyas customers are MSP’s who use the VSA software to manage the IT infrastructure of up to 1,000,000 local and small businesses.

Yet, CRN reported that vulnerabilities exploited in this ransomware attack were detected within the VSA management product, in as early as April this year. The Dutch Institute for Vulnerability Disclosure said when researcher Wietse Boonstrain discovered the issues, Kaseya was notified.

Keseya resolved only four of the seven vulnerabilities discovered, whilst three remained unresolved.

The company engaged with governmental forces such as the FBI, The Department of Homeland Security and the White House to resolve the issue.

The investigation is currently ongoing.

More on

• Business threats and horizon scanning
• Crisis, incident and emergency management
• Information technology and Cyber Security

About the author

Lisa Hanley

Journalist

Lisa Hanley is an In - house Journalist working for The BCI. With a Masters degree in Televison Journalism from City, University of London, Lisa has previously worked as a Freelance Producer and Journalist for London Live, PA Media and Thomson Reuters Foundation. Her experience varies from producing documentaries, films and podcasts, to producing news packages for television and voiceovers for radio.