Ransomware Hits Hundreds of US Companies, Security Firm Says

These investment mistakes will cost you money

It was not immediately clear how many Kaseya customers might be affected or who they might be. Kaseya urged customers in a statement on its website to immediately shut down servers running the affected software. It said the attack was limited to a “small number” of its customers. Brett Callow, a ransomware expert at the cybersecurity firm Emsisoft, said he was unaware of any previous ransomware supply-chain attack on this scale. There have been others, but they were fairly minor, he said.

The REvil gang, a major Russian-speaking ransomware syndicate, appears to be behind the attack, said John Hammond of the security firm Huntress Labs. He said the criminals targeted a software supplier called Kaseya, using its network management package as a conduit to spread the ransomware through cloud service providers. Other researchers agreed with Hammond’s assessment. “Kaseya handles large enterprise all the way to small businesses globally, so ultimately, (this) has the potential to spread to any size or scale business,” Hammond said in a direct message on Twitter. “This is a colossal and devastating supply chain attack.” Such cyberattacks typically infiltrate widely used software and spread malware as it updates automatically. “This is SolarWinds with ransomware,” he said. He was referring to a Russian cyberespionage hacking campaign discovered in December that spread by infecting network management software to infiltrate U.S. federal agencies and scores of corporations.

Cybersecurity researcher Jake Williams, president of Rendition Infosec, said he was already working with six companies hit by the ransomware. It’s no accident that this happened before the Fourth of July weekend, when IT staffing is generally thin, he added. “There’s zero doubt in my mind that the timing here was intentional,” he said.

Hammond of Huntress said he was aware of four managed-services providers — companies that host IT infrastructure for multiple customers — being hit by the ransomware, which encrypts networks until the victims pay off attackers. He said thousand of computers were hit. “We currently have three Huntress partners who are impacted with roughly 200 businesses that have been encrypted,” Hammond said. Hammond wrote on Twitter: “Based on everything we are seeing right now, we strongly believe this (is) REvil/Sodinikibi.” The FBI linked the same ransomware provider to a May attack on JBS SA, a major global meat processer.

The White House and the federal Cybersecurity and Infrastructure Security Agency did not immediately return messages seeking comment. ___ Bajak reported from Boston; O’Brien contributed from Providence, Rhode Island.

The News Highlights

  • Ransomware Hits Hundreds of US Companies, Security Firm Says
  • Check the latest world news updates and information about business, finance, technology and more.
  • Check the latest update on tech news
Disclaimer: If you need to edit or update this news from compsmag then kindly contact us Learn more

For Latest News Follow us on Google News


Latest Headlines
  • Show all
  • Trending News
  • Popular By week
Drivers Are Not Seeing Much Relief From High Gas Prices
Drivers Are Not Seeing Much Relief From High Gas Prices
Analysts report a slight increase in demand and a slight decline in total domestic gas stocks, and although crude oil prices have fluctuated, they expect ...
Trade Group: Connecticut May Lag Back in Hotel Jobs Recovery
Trade Group: Connecticut May Lag Back in Hotel Jobs Recovery
Direct hotel jobs include positions such as housekeeper and front desk attendant but don’t include jobs such as restaurant or retail workers or other small ...
It’s possible that the next iPhone will have an always-on display
It’s possible that the next iPhone will have an always-on display
Mark Gurman from Bloomberg outlines what customers can expect from the iPhone 13. The recently leaked battery capacities go in line with a screen that sports ...
Navajo advocates take a community approach to sexual violence
Navajo advocates take a community approach to sexual violence
“This is very hard work,” she said. “It has a stigma to it. Nobody wants to talk about it.” But facing the issues head-on opens the space for dealing with ...
French protesters reject virus licenses, vaccine mandate
French protesters reject virus licenses, vaccine mandate
Legislators in France’s Senate were debating the virus bill Saturday after the lower house of parliament approved it on Friday, as virus infections are ...
In 2021, the best unlimited phone data package will be
In 2021, the best unlimited phone data package will be
For this roundup, I’m going to focus on the three major carriers — Verizon, T-Mobile and AT&T — combing through the multiple postpaid unlimited plans ...
Buckley Space Force Base prepares for the next frontier
Buckley Space Force Base prepares for the next frontier
Jackson formally shifted to the Space Force — earning a blue name tag in place of his longtime brown one — in October. That shift in hue on Jackson’s name ...
Sensata Technologies Reports First Quarter 2021 Financial Results
Nominees Announced for 2021 ARCC News of the Year Awards | The business
The nominees, in their respective categories, are: “Each year we are blessed to honor our members for their hard work and dedication to our community. Many ...
Unvaccinated snow leopard at San Diego Zoo catches COVID-19
Unvaccinated snow leopard at San Diego Zoo catches COVID-19
Ramil is not showing additional symptoms, the zoo said, but because he shares an enclosure with a female snow leopard and two Amur leopards, the staff assumes ...
Petersen leaves Dream coach for health reasons
Petersen leaves Dream coach for health reasons
He will move into an advisory role for the team’s front office. “It has been a pleasure working with and getting to know Coach Mike,” Dream majority owner ...
Show next
Compsmag - Latest News from tech, business and health
Logo